Targeted Attack in Mexico: DNS Poisoning via Modems
January 11th, 2008 by Paul Oliveria
“Dial ‘M’ for malware” sounds like a good phrase to sum this up…
TrendLabs researchers have received reports of what appears to be an attempt of a massive DNS poisoning attack in Mexico. True to the growing complexity of Web threats, the weapons of choice include social engineering, malware download, pharming, and — here’s the clincher — a DSL modem.
Yes, the attack begins with the exploitation of a known vulnerability in 2Wire modems. The said vulnerability allows an attacker to modify the local DNS servers and hosts. One of the main Internet Service Providers in Mexico offers 2Wire modems to their customers, and it is estimated that more than 2 million users are at risk.
http://blog.trendmicro.com/targeted-att ... ia-modems/
http://blog.trendmicro.com/targeted-att ... -pharming/
Login
Register
Arcade
FAQ
Search
