According to Malwarebytes the link to fake site of the German Federal Office for Information Security (BSI) was distributed through phishing emails. This site has a link to a ZIP archive (Intel-AMD-SecurityPatch-11-01bsi.zip) containing the so-called patch (Intel-AMD-SecurityPatch-10-1-v1.exe), which really is a piece of malware. Upon running it, users will infect themselves with Smoke Loader, a piece of malware that can retrieve additional payloads. The researchers immediately contacted Comodo and CloudFlare to report on this abuse and within minutes the site was blocked.
