Pharming Attack Targets Home Router DNS Settings

msm1267 (2804139) writes Pharming attacks are generally network-based intrusions where the ultimate goal is to redirect a victim's web traffic to a hacker-controlled webserver, usually through a malicious modification of DNS settings. Some of these attacks, however, are starting to move to the web and have their beginnings with a spam or phishing email. Proofpoint reported on the latest iteration of this attack, based in Brazil. The campaign was carried out during a five-week period starting in December when Proofpoint spotted phishing messages, fewer than 100, sent to customers of one of the country's largest telecommunications companies.

Passwords again...

[houstonbofh]

"They also try to brute force the admin page for the router using known default username-password combinations."

About time to force manufactures to not have "default" passwords. If 2wire can do it on their amazingly cheap crap, so can others.

Sounds a lot like what I saw last week

[msobkow]

At the beginning of last week, I saw a number of fake emails "returned" to my ISP email account. A day or two later, I received a phishing email requesting me to change my password for that email account.

Today, someone tried the same thing for my Microsoft account.

It's more creative than usual, but it is still just a phishing attack, and you can easily spot it by the fake URLs in the phishing emails.

Not even

[Billly+Gates]

Just Compromise an adserver with A flash exploit and You Can 0wn Tens Of thousands within hours.

Whoever thought to run executables on random websites was a good idea? More proof adblock not user education is needed for security. Gone are the days of not clicking meant secure