It is being widely reported that up to 250,000 computers worldwide may lose internet access as a result of the DNS Changer malware infection. According to the DNS Changer Working Group:
“The botnet operated by Rove Digital altered user DNS settings, pointing victims to malicious DNS in data centers in Estonia, New York, and Chicago. The malicious DNS servers would give fake, malicious answers, altering user searches, and promoting fake and dangerous products. Because every web search starts with DNS, the malware showed users an altered version of the Internet.”
DNS Changer was used to redirect users to ad-filled pages which earned the group involved some $14 million in illicit revenue. While the group, Rove Digital, has been caught the nature of infection prompted the FBI to set up temporary DNS servers to take over from the malicious ones. When the temporary servers are shut down on 9 June, anyone still infected will find themselves unable to connect to the ‘net.
If you’d like to check whether your PC is infected with DNS Changer, head here. The site also offers removal tips, should they be required, but South Africa has a relatively small infection rate compared to places like the US and UK.
Source: Digital Trends