Fake Spectre and Meltdown patch spreads Smoke Loader malware

According to Malwarebytes the link to fake site of the German Federal Office for Information Security (BSI) was distributed through phishing emails. This site has a link to a ZIP archive (Intel-AMD-SecurityPatch-11-01bsi.zip) containing the so-called patch (Intel-AMD-SecurityPatch-10-1-v1.exe), which really is a piece of malware. Upon running it, users will infect themselves with Smoke Loader, a piece of malware that can retrieve additional payloads. The researchers immediately contacted Comodo and CloudFlare to report on this abuse and within minutes the site was blocked.