There is nothing new in these sorts of social engineering, scam, phishing style emails.
The user really does have to exercise a high degree of common sense, a) is this email unsolicited, b) why would they send it and c) how do they know you need or even have the product in question. Companies simply don't distribute software updates in this way.
Never open unsolicited emails, never click links in unsolicited emails (if you failed the first point) and never open attachments in unsolicited emails.
Then it doesn't matter what the social engineering/scam/phishing topic of the day is (there will be a different one tomorrow), you won't get caught.