Jump to content
  • Sign in to follow this  

    The DNS Changer Malware

    Tom Allensworth

    Have you heard of the DNS Changer Malware threat? Are you infected? DCWG reports; "On November 8, the FBI, the NASA-OIG and Estonian police arrested several cyber criminals in “Operation Ghost Click”. The criminals operated under the company name “Rove Digital”, and distributed DNS changing viruses, variously known as TDSS, Alureon, TidServ and TDL4 viruses."


    DCWG continues; "The botnet operated by Rove Digital altered user DNS settings, pointing victims to malicious DNS in data centers in Estonia, New York, and Chicago. The malicious DNS servers would give fake, malicious answers, altering user searches, and promoting fake and dangerous products. Because every web search starts with DNS, the malware showed users an altered version of the Internet. Under a court order, expiring July 9, the Internet Systems Consortium is operating replacement DNS servers for the Rove Digital network. This will allow affected networks time to identify infected hosts, and avoid sudden disruption of services to victim machines."


    This protection comes to an end in July, and if your machine is infected with the Malware, you could loose your internet connection for a period of time. As of this writing, over 350,000 machines remain infected. To check to see if your machine is inflicted with the malware, and to fix it if it is, please go to the DCWG Site here.

    Sign in to follow this  

    User Feedback

    Recommended Comments

    There are no comments to display.

    Create an account or sign in to comment

    You need to be a member in order to leave a comment

    Create an account

    Sign up for a new account in our community. It's easy!

    Register a new account

    Sign in

    Already have an account? Sign in here.

    Sign In Now

  • Create New...