What is the DNS Changer Malware?..a heads-up message

Geek spoken here
Post Reply
User avatar
Posts: 33551
Joined: Sun Oct 15, 2006 2:14 pm
Has thanked: 1 time

What is the DNS Changer Malware?..a heads-up message

Post by Parrotpaul »

Click here to see if you are infected

What is the DNS Changer Malware?

On November 8, the FBI, the NASA-OIG and Estonian police arrested several cyber criminals in “Operation Ghost Click”. The criminals operated under the company name “Rove Digital”, and distributed DNS changing viruses, variously known as TDSS, Alureon, TidServ and TDL4 viruses. You can read more about the arrest of the Rove Digital principals here, and in the FBI Press Release.

What does the DNS Changer Malware do?

The botnet operated by Rove Digital altered user DNS settings, pointing victims to malicious DNS in data centers in Estonia, New York, and Chicago. The malicious DNS servers would give fake, malicious answers, altering user searches, and promoting fake and dangerous products. Because every web search starts with DNS, the malware showed users an altered version of the Internet.

Under a court order, expiring July 9, the Internet Systems Consortium is operating replacement DNS servers for the Rove Digital network. This will allow affected networks time to identify infected hosts, and avoid sudden disruption of services to victim machines.

How Can I Protect Myself?
This page describes how you can determine if you are infected, and how you can clean infected machines. To check if you’re infected, Click Here. If you believe you are infected, here are instructions on how to clean your computer.

"I think I may say that of all the men we meet with, nine parts of ten are what they are, good or evil, useful or not, by their education." John Locke
User avatar
Oversight Committee
Posts: 4246
Joined: Sat Oct 11, 2008 5:29 am

Re: What is the DNS Changer Malware?..a heads-up message

Post by 18echo »

Affects both Windows and MAC.

Yet another reason to use LInux.
"Hoc spatium adsuesco assuesco pro profunda rhetoricam."
Post Reply