Hello. Microsoft experts:
Had something weird happened today that I've never experienced before and I'd like to know if anybody can enlighten me on this.
Usually I'm on guard for these things and normally wouldn't just indicate "go ahead", but, because this is the general time of the month when I usually get a notice that there's a monthly--"Windows security update", I mistakenly let it go and try to run/process-the-update.
Luckily, it failed to install, and I say that because I'm kind of wondering now if this wasn't some kind of a back-handed attempt to load a virus or whatever via the "legit" Windows Update Service rather than one of the more other obvious mechanisms like email, web pages, etc.
The subject Windows update was actually titled "Advanced Micro Devices, Inc driver update for AMD SMBus", obviously not a security update, but like I said, I blew it and let it go, and fortunately it failed the installation (Error details: Code 80070103).
I couldn't find any viruses or any other like entities with the three different virus checkers tools that I have, so I think I'm okay??
I checked around on the "Microsoft Update Catalog" and couldn't find any "AMD SMBbus" updates that had come out recently for Windows 7, but there were some other "AMD SMBbus" updates that did come out for later Window versions as recently as July of 2023, but like I said, didn't see anything for Windows 7 since 2015, which made me wonder why did this show up via the Windows Update Service?? I built the computer that we're talking about so I know it's insides and outs thoroughly, so I double checked the ASUS motherboard support website and verified that they have had no update for this, either, since 2015 for my particular motherboard/PC and Win.7.
What I'm wondering is:
- Can anybody from the community verify with Microsoft, if they have such a connection, that they/Microsoft feels that their Windows Update Service is secure and that there is no need to worry about such malware coming through their pipeline, OR, maybe they just don't want to say so publicly, which would tell me that maybe it's not so secure to begin with?
- If you are able to make a connection with Microsoft and they do have an open'ness to want to talk about this, will it be too much to ask if you could find out if they were aware of this specific incident yesterday, e.g., this seemingly bogus "AMD SMBus" update? Maybe it was something that they were aware of and it was simply just a fluke and not a security problem?
That's all!!
Thanks for listening.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
