A word of caution as you look to update your PC with the latest security patches from Microsoft - attackers are taking advantage of Microsoft's October Patch Tuesday to try to con users into downloading bogus patches and infect them with malware.

Spam messages, purporting to be a Microsoft security update, are making the rounds, aimed at getting users to open a malicious executable file attachment, according to reports.

While malicious e-mail posing as security updates is not a new tactic, we'll most likely keep seeing more of it in the future as users continue to fall for the trick. Here are two easy ways to be sure you don't get duped:

• Keep in mind that Microsoft never sends security updates as e-mail attachments.
• Make sure to get your updates from the Microsoft Update site or by turning Automatic Updates on.