DNS Changer Malware Poses July 9 “Internet Dooms Day”

Monday, July 9, 2012 (Tuesday in Phil) is the “internet doomsday” for some 300,000 computers around the globe as the US security fixes of a malware discovered years ago are set to expire.

The malware-DNS Changer was discovered in 2007 but only last year the ring (company name is Rove Digital) behind it was busted in Estonia after raking $14 million in online advertising scams. The DNS Changer redirected Internet traffic by hijacking the domain name systems of Web browsers. The infection was vast and controlled so much internet traffic that authorities could not contained with. The DCWG map below shows the countries (including the Philippines) affected by the DNS Changer and the font size of the country’s name is relative to the degree of infection.

The FBI was able to get court orders for setting up replacement servers that allows infected computers to operate normally despite the infection. However, the replacement servers are due for shutdown on 0401 GMT Monday that some experts said would result to “internet doomsday” to thousands of infected computers.

Most of those affected computers are in the US (69,000) and some are in Italy, Germany, India, Britain, Canada, France and Australia. The DNS Changer Working Group (DCWG) was formed and consisted of several experts groups and organizations as an ad hoc group tackling the malicious DNS servers.

Several organizations participated in the clean-up operations against the DNS Changer. If you want to check your system for possible DNS Changer infection, try visiting one the organizations with this link. Then, you’ll get this page below if your system is not infected by the DNS Changer:

Note from DCWG: Had your computer been infected with DNS changer malware you would have seen a red background. Please note, however, that if your ISP is redirecting DNS traffic for its customers you would have reached this site even though you are infected.

The giant social network Facebook reminded its users that on July 9, it will display the warning below if the user uses a DNS Changer-infected computer when visiting the site. The warning will link the user to the DCWG website for cleaning up  the infection.

Google and other sites will also do the same notification on July 9 for their visitors. 🙂


One thought on “DNS Changer Malware Poses July 9 “Internet Dooms Day”

  1. I just like the valuable info you provide in your articles. I’ll bookmark your weblog and take a look at again right here regularly. I am quite certain I will be told a lot of new stuff right right here! Best of luck for the next!


Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s