Slashdot Mirror

← Back to Stories (view on slashdot.org)

New Attack Hijacks DNS Traffic From 300,000 Routers

Posted by Unknown on from the something-had-to-replace-windows dept.

nk497 writes "Florida-based security firm Team Cymru said it was examining a widespread compromise"of 300,000 consumer and small office/home office (SOHO) routers in Europe and Asia. The DNS server settings were changed to a pair of IP addresses, which correspond to Dutch machines that are registered to a company that lists its address in central London. The attack highlights the flaws in router firmware, the researchers said. 'It's not new as an issue to the InfoSec community but this is one of the biggest we've seen recently as it's quite insidious,' Cymru's Steve Santorelli said, adding the hack could let the attackers conduct man in the middle attacks, impersonating your bank, for example."

4 of 105 comments (clear)

  1. Re:Impersonating a bank is easy by rebelwarlock · · Score: 4, Funny

    That's forming a bank, not impersonating one.

  2. Re:The report by Anonymous Coward · · Score: 1, Funny

    No I'm not!

  3. Re:Exploit, or dumb users? by TubeSteak · · Score: 2, Funny

    Is this conducted via some common firmware exploit, or dumb users leaving default admin password in place?

    FTFS: The attack highlights the flaws in router firmware

    I'll admit, I'm a weirdo.
    I read more than the headline before I comment.

    --
    [Fuck Beta]
    o0t!
  4. Re:So how to impersonate a bank ? by Anonymous Coward · · Score: 5, Funny

    Alright wiseguy, share with us details on how to impersonate a bank then ...

    https://www.mtgox.com/