New DNS Redirect Trick Being Used

New DNS Redirect Trick Being Used

***
09-Mar-2005

Phishers seemed to have developed a new weapon in their phishing arsenal – DNS Redirecting.

***

New scams are being developed which redirect victims from legitimate sites to malicious ones, evidence has suggested.

The warning comes only days after a warning that some computers were being deliberately misdirected from popular sites such as eBay or Google to spoof web servers that silently install spyware on victims’ PCs.

Early indications suggest that the scam was only small in scale but the idea behind the new tactic is alarming.

The scam involved the key servers which act as the converters of alphabetic web addresses which we use every day to the number based network address (IP addresses). The scam replaced the numeric addresses of popular websites with the addresses of malicious sites managed by the scammers.

The Internet Storm Center, advised that a recently discovered flaw in Symantec’s firewall and gateway security appliances likely allowed some of the so-called DNS poisining to occur.

One expert warns that future attacks, if more efficiently implemented, could be virtually undetectable. Users simply would not know – there would be no indication on their browsers whether the sites they were visiting were legitimate or not.

Source: News.com

MillerSmiles News

09/03/05

Talk about this article on our phishing news discussion forum


PRESS/MEDIA ENQUIRIES

MillerSmiles is the web’s dedicated anti-phishing service. Launched in 2003, the site has become one of the most trusted internet security related websites on the internet.

For enquiries relating to this story or any other part of the MillerSmiles website please email the MillerSmiles team here

If you are interested in business and partnership opportunities with MillerSmiles please email us here



Source link

Previous articleEx-NFL players plead guilty to health care fraud scheme
Next articleOnline romance scams

LEAVE A REPLY

Please enter your comment!
Please enter your name here