DNS Changer Malware

Posted on July 7th, 2012

On Monday morning at 4am you could find that you have being cut off from the internet. If you have being infected by the DNS changer malware.

What is DNS

When you type a web address in to a web browser it has to find were the website you want is stored, so it uses DNS servers to find it. These servers then point your browser to where the website is stored and your browser displays the website.

What does this DNS changer malware do?

When your web browser first goes to look at the internet, the malware stops it going to the internet’s correct servers and instead it goes to the hacker’s servers.

This means they can see what websites you are viewing and can try and get your account details, like username and passwords.

Why is this happening?

On the 8th of November the FBI and a few law enforcement agencies raided the hackers and took over their servers.

This meant they could not get any more account details. But kept the servers online so people could still connect to the internet, They have taken the decision to now turn off these servers. When this happens your computer will try and display your website but nothing will be displayed.

How can I check I’m not infected?

To check if you are infected with the DNS changer malware, you simply need to go to http://www.dns-ok.us/ and if it says ‘DNS Resoltion = Green’ you are not infected. If it says anything else it sounds like you might be infected.

More information can be found at. http://www.fbi.gov/news/stories/2011/november/malware_110911