http://www.fbi.gov/news/stories/2011/november/malware_110911 Says there is Malware out there that affects the DNS settings on PC's ,and that after July 9 2012 affect computers will be shut off from ISP's? site to check pc: http://www.dcwg.org/
Hmmm..... My first thought on seeing the thread title was that the FBI was coming after us! Having got that out of the way, I'm amazed at the claimed # of affected machines - Changing DNS server addresses requires privilege that shouldn't be available to malware. What is clever is they then scan your intranet and see if they can get to your router - If you leave access to that wide open (even from the inside) all bets are off..... As for the "temporary safe servers" it can't be a big deal losing 'em - If you've already changed your DNS server addresses to use 'em, you'll know you've gotta set 'em back too, surely? Cheers, Ian
The FBI are behind the curve ball. This type of malware has been around since the mid 00's. Ransomware is what the cool kids are doing now. http://www.f-secure.com/v-descs/trojan_w32_ransomcrypt.shtml or the recent Remote desktop Protocol exploit on windows. Anyway most of these compromised machines are usually a) pirated copies of windows b) n00bs logging into windows as admin c) not running any form of AV or firewall d) don't patch o/s or apps e) running pirated software Mac was recently snapped with a Flashback malware thanks to a java vulnerability. Upto 600,000 machines were infected. As always you can't ever be 100% safe on the Internet but using firewall/AV is better than nothing
wow if thats the FBI's latest they are truly in the stone age as far as vulnerabilities go NIST is a better source of information, albeit a bit vague for most You gamers should turn off UPnP for starters. So many easier things to go after ...