What the DNSChanger malware is — and why you should care (FAQ)

This graphic shows how the DNSChanger malware worked.

(Credit:
FBI)

The DNSChanger malware has been around for years, but its deleterious effects are coming to a head this Monday. Here’s what you have to know about it, and how to fix it.

What is DNSChanger?
DNSChanger is a Trojan horse malware with many variants. It changes an infected computer’s DNS settings to point to rogue, bad guy-controlled servers. These then show you ads that look real, but aren’t. Basically, it redirects your legitimate Web surfing to malicious Web sites that then attempt to steal personal information and generate illegitimate ad revenue.

How much money did DNSChanger make?
From the time it was discovered around 2007 until six Estonian scammers were caught in November 2011, DNSChanger scored them upwards of $14 million, reportedly.

What does DNSChanger do?
DNSChanger changes your Domain Name System settings without your permission. This is bad because DNS is basically the Internet’s phone book crossed with a map. DNS links a URL, such as CNET.com, to an IP address. (An IPv4 address would be something like 192.1.56.10, while an IPv6 address would look like 1050:0:0:0:5:600:300c:326b.) DNSChanger changes that and redire… [Read more]

Read more The Download Blog – CNET

giveaway / July 5, 2012 / Software
Tags: , , ,