We’ve discussed this topic before in our “Operation Deadline Extension” article but in the month since that post, it seems a significant number of bots are still reporting into the two temporary DNS servers the FBI setup to keep DNSChanger Trojan-infected computers from losing Internet access. First off, they wouldn’t be loosing Internet access … just the ability to translate domain names into IP addresses. But that’s a nit as it’s essentially the same thing from the average users’ perspective.
As previously noted, in March the FBI extended the deadline they would be maintaining these two servers until July 9th to give organizations more time to discover and address infected computers. The numbers don’t look promising though. In five months the estimated number of compromised machines have decreased from 568K only down to 360K. Of the 360K only 85K appear to be in the U.S. Given that most of these U.S. users are probably non-technical home users as the article states, I personally think the FBI should just pull the plug already.
What’s the worst that going to happen? The DNS servers go down and my Mom won’t be able to access her Yahoo! Mail or embarrass me on Facebook. She’ll call her ISP and they’ll take her through some tech support steps and will discover the DNS servers aren’t theirs. They’ll lead her through changing them … and the problem will be solved within 15 minutes (if you don’t include the 60 minutes she’ll have to wait to get a hold of someone that actually knows what the heck they are doing). In the worst case, Mom will call me … I’ll note that it is July 9th and have her set her computer’s DNS servers to OpenDNS’s or Google’s.
Personally, I’d like to see those of us in the know (with an exception for those prone to wear tinfoil hats) be more proactive and help spread the word by having our non-technical family and friends visit http://www.dcwg.org to help minimize the number of support calls we get on July 9th.
WASHINGTON — For computer users, a few mouse clicks could mean the difference between staying online and losing Internet connections this summer.
Unknown to most of them, their problem began when international hackers ran an online advertising scam to take control of infected computers around the world. In a highly unusual response, the FBI set up a safety net months ago using government computers to prevent Internet disruptions for those infected users. But that system is to be shut down.
The FBI is encouraging users to visit a website run by its security partner, http://www.dcwg.org, that will inform them whether they’re infected and explain how to fix the problem. After July 9, infected users won’t be able to connect to the Internet.
Most victims don’t even know their computers have been infected, although the malicious software probably has slowed their web surfing and disabled their antivirus software, making their machines more vulnerable to other problems.
Do you think the FBI should just cut the cord come July 9th? Today’s post pic is from DavidSuggitt.com. See ya!