Edition 1, Volume 6
Special Security Alert: DNSChanger Malware
Thousands of People Could Lose Internet Service this Week
Originally I was going to talk about Facebook. However, because of a recent news announcement regarding the FBI’s impending shutdown of certain Internet servers, and since I had been talking about malware and viruses over the past three weeks anyway, I thought today would be a good time to address this serious, upcoming issue.
The following article is from TheDenverChannel.com :
In 2007, a cyber crime ring in Europe infected approximately 4 million computers in more than 100 countries, according to the Federal Bureau of Investigations. In the U.S., there were nearly 500,000 infections.
The DNSChanger malware worked by routing Internet searches away from
one’s Internet service provider to a rogue domain name system server operated by a fraudulent Internet marketing company. The Internet user was then directed to websites and advertisements for which the alleged hackers received payments for views and clicks in the amount of $14 million.
In November 2011, the FBI shut down the cyber ring. However, with millions of computers accessing the Internet through the rogue servers, the FBI substituted temporary servers to allow uninterrupted Internet access until victims could remove the virus.
On Thursday, March 8, 2012, those temporary servers will go dark; those computers still infected with the DNSChanger will not be able to go online.
“It’s not [a difficult repair],” said Sun Pak, owner of iComputer in Denver. “It’s basically just a virus removal. Unless you have virus removal software, or have the means to do it yourself, I would recommend taking it to a place that does it.
The FBI has created detailed instructions to help you determine if your computer or router is infected with the DNSChanger malware. To see if you are one of them, go to http://www.fbi.gov/news/stories/2011/november/malware_110911/DNS-changer-malware.pdf and download the FBI’s DNSChanger Malware instruction sheet. If you find you are one of the thousands that will be affected, go to https://www.us-cert.gov/reading_room/trojan-recovery.pdf to download the government’s Trojan Horse Recovery pdf.
Remember, the FBI shutdown of infected servers resulting in a possible Internet blackout will occur this Thursday, March 8th, so please make sure your Internet server and/or router is not infected by this rogue malware before then.
* * * * * *
Next week: Facebook series – Part 1: Differences (and similarities) between timeline, profile page, group page, and just plain “page.”
 Schepman, Doug “Thousands Affected By Computer Virus Could Lose Internet: FBI To Shut Down Servers Used For Illegal Clickjacking” ABC 7News, 5 March 2012 <www.thedenverchannel.com>