The Federal Bureau of Investigation is saying that computers infected with a virus called DNSChanger could lose Internet access beginning Monday, 9 July.
In November 8, several cyber criminals were arrested in “Operation Ghost Click,” an initiative crossing national lines. The alleged criminals operated under the company name “Rove Digital”, and distributed Domain Name System (DNS) changing viruses. Rove Digital operated a botnet that controlled computer users’ web browsing by altering user DNS settings, pointing victims to malicious sites. The malicious DNS servers were set up to give fake, malicious answers, alter user searches, and promote fake and dangerous products.
Under a court order that is about to expire, the Internet Systems Consortium is operating replacement DNS servers for the Rove Digital network. This initiative is designed to allow affected networks time to identify infected hosts and avoid sudden disruption of services to victim machines.
The DNS Changer Working Group (DCWG), an ad hoc group of subject matter experts including members from organizations such as Georgia Tech, Internet Systems Consortium, and others, was created to help remediate Rove Digital’s malicious DNS servers. They are offering opportunities to detect the virus and are offering guidance regarding fixing infecting computers and protecting all computers.
For additional information, please visit:
DNS Changer Working Group (DCWG): DNS Changer Check-Up
FBI: International Cyber Ring That Infected Millions of Computers Dismantled
Media reports:
The Sun Chronicle: Computer virus expected to strike Monday (6 JUL 12)
eSecurity Planet: DNS Changer D-Day Approaches (3 JUL 12)
ABC News: DNS Changer Malware: What to Do If Your Computer's Hit (6 JUL 12)
Background information:
FBI: How to Protect Your Computer
Posts
No comments:
Post a Comment