Four-month extension approved in DNSChanger case

Powered by SC Magazine
 

Enterprises gain extra time to remove trojan.

A US judge has granted a four-month extension for the operation of temporary DNS servers installed to combat a trojan affecting three million PCs globally.

The extension request, published by security blogger Brian Krebs, would delay the replacement of the rogue servers used in the malware distribution for another 120 days, giving businesses and governments additional time to react to the infections.

Security firm Internet Identity (IDD) reported early last month that roughly half of Fortune 500s and US government agencies were still grappling with the epidemic. Of the nearly three million PCs infected worldwide, at least 500,000 are in the United States.

According to the IDD report, “if an enterprise's employee has DNSChanger on their computer, it means that enterprise is susceptible to having their proprietary information stolen".

IDD updated its infection figures last week, indicating a major downturn in the number of affected enterprises. The extension given on Monday could lead to an even more dramatic decrease in the contagion.

As well as disabling anti-virus and software updates for users, the DNSChanger malware redirects infected computers to malignant sites via the rogue DNS servers, located at data centers in Manhattan and Chicago.

While businesses and government agencies were a target of the trojan, home users were also affected.

Arrests in relation to the attack -- which hauled in an estimated $14 million, according to the FBI -- were made in November after a two-year investigation.

The FBI is currently seeking the extradition of six Estonian nationals linked to the attacks, who, according to them, used the malware to “manipulate the multi-billion-dollar internet advertising industry".

This article originally appeared at scmagazineus.com

Copyright © SC Magazine, US edition


Four-month extension approved in DNSChanger case
 
 
 
Top Stories
Business-focused Windows 10 brings back the Start menu
Microsoft skips 9 for the "greatest enterprise platform ever".
 
Feeling Shellshocked?
Stay up to date with patching for the Bash bug.
 
Amazon forced to reboot EC2 to patch Xen bug
Rolling restarts over next week.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Which is the most prevalent cyber attack method your organisation faces?




   |   View results
Phishing and social engineering
  66%
 
Advanced persistent threats
  4%
 
Unpatched or unsupported software vulnerabilities
  11%
 
Denial of service attacks
  6%
 
Insider threats
  12%
TOTAL VOTES: 1371

Vote