Home
Home
Home
Home
Home
Home
Home
Home
Home

Thursday, February 16, 2012

The DNSChanger vs the FBI

In the ever continuing battle against malware, the FBI may be shutting off some DNS servers around the country on March 8, 2012.  DNS servers are used to translate recognizable site names (like www.pointsolve.com) into IP addresses, which are read by your computer.

The problem is that some hackers in Estonia have managed to infect close to half a million PCs in the US with a DNSChanger attack.  By taking control of DNS, the attackers could then direct web traffic from the infected PCs to any sites of their choosing, often to malicious sites designed to spread more infections or gather personal data.

The FBI fought the attack by replacing the hackers' rogue DNS servers with legitimate ones, but the problem is that the court order keeping the legitimate servers online may expire.  If the legitimate servers are taken offline, infected PCs will then lose internet access.

As always, it is our recommendation to ensure your antivirus software is up to date and running.  Additionally, run Windows Update regularly to ensure that the latest security patches are installed.  Lastly, if at any point in time you attempt to visit a website and it redirects you to a suspicious website, contact your IT professional immediately.

No comments:

Post a Comment