FBI Rolls Eyes to Prevent Internet Outage

April 23, 2012
By

Post to Twitter Post to Facebook Post to Reddit

We’ve discussed this topic before in our “Operation Deadline Extension” article but in the month since that post, it seems a significant number of bots are still reporting into the two temporary DNS servers the FBI setup to keep DNSChanger Trojan-infected computers from losing Internet access. First off, they wouldn’t be loosing Internet access … just the ability to translate domain names into IP addresses. But that’s a nit as it’s essentially the same thing from the average users’ perspective.

As previously noted, in March the FBI extended the deadline they would be maintaining these two servers until July 9th to give organizations more time to discover and address infected computers. The numbers don’t look promising though. In five months the estimated number of compromised machines have decreased from 568K only down to 360K. Of the 360K only 85K appear to be in the U.S. Given that most of these U.S. users are probably non-technical home users as the article states, I personally think the FBI should just pull the plug already.

What’s the worst that going to happen? The DNS servers go down and my Mom won’t be able to access her Yahoo! Mail or embarrass me on Facebook. She’ll call her ISP and they’ll take her through some tech support steps and will discover the DNS servers aren’t theirs. They’ll lead her through changing them … and the problem will be solved within 15 minutes (if you don’t include the 60 minutes she’ll have to wait to get a hold of someone that actually knows what the heck they are doing). In the worst case, Mom will call me … I’ll note that it is July 9th and have her set her computer’s DNS servers to OpenDNS’s or Google’s.

Personally, I’d like to see those of us in the know (with an exception for those prone to wear tinfoil hats) be more proactive and help spread the word by having our non-technical family and friends visit http://www.dcwg.org to help minimize the number of support calls we get on July 9th. :)

via 7online.com

WASHINGTON — For computer users, a few mouse clicks could mean the difference between staying online and losing Internet connections this summer.

Unknown to most of them, their problem began when international hackers ran an online advertising scam to take control of infected computers around the world. In a highly unusual response, the FBI set up a safety net months ago using government computers to prevent Internet disruptions for those infected users. But that system is to be shut down.

The FBI is encouraging users to visit a website run by its security partner, http://www.dcwg.org, that will inform them whether they’re infected and explain how to fix the problem. After July 9, infected users won’t be able to connect to the Internet.

Most victims don’t even know their computers have been infected, although the malicious software probably has slowed their web surfing and disabled their antivirus software, making their machines more vulnerable to other problems.

Continued here.

#####

Do you think the FBI should just cut the cord come July 9th? Today’s post pic is from DavidSuggitt.com. See ya!

Tags: , , , ,

11 Responses to FBI Rolls Eyes to Prevent Internet Outage

  1. (@Nathiet) (@Nathiet) on April 23, 2012 at 8:14 am

    #NoVABloggers FBI Rolls Eyes to Prevent Internet Outage http://t.co/5llTZvzV

  2. (@grecs) (@grecs) on April 23, 2012 at 8:59 am

    BLOGGED: FBI Rolls Eyes to Prevent Internet Outage http://t.co/dqAarto5

  3. (@novainfosec) (@novainfosec) on April 23, 2012 at 11:29 am

    FBI Rolls Eyes to Prevent Internet Outage http://t.co/IsqQ4UUP

  4. (@grecs) (@grecs) on April 23, 2012 at 5:41 pm

    FBI Rolls Eyes to Prevent Internet Outage http://t.co/dqAarto5 //Come on .. pull the plug. ;)

  5. (@novainfosec) (@novainfosec) on April 23, 2012 at 5:41 pm

    FBI Rolls Eyes to Prevent Internet Outage http://t.co/IsqQ4UUP //Come on .. pull the plug. ;)

  6. (@grecs) (@grecs) on April 23, 2012 at 8:37 pm

    Some thoughts on whole Internet outage b/c of FBI pulling plug on DNS servers for DNSChanger infected PCs. http://t.co/dqAarto5

  7. (@novainfosec) (@novainfosec) on April 23, 2012 at 8:37 pm

    Some thoughts on whole Internet outage b/c of FBI pulling plug on DNS servers for DNSChanger infected PCs. http://t.co/IsqQ4UUP

  8. (@grecs) (@grecs) on April 23, 2012 at 10:38 pm

    Should FBI pull plug on DNSChanger-infected PCs? Is this really considered an Internet outage? http://t.co/dqAarto5

  9. (@novainfosec) (@novainfosec) on April 23, 2012 at 10:38 pm

    Should FBI pull plug on DNSChanger-infected PCs? Is this really considered an Internet outage? http://t.co/IsqQ4UUP

  10. Eileen Garry on July 8, 2012 at 11:44 pm

    Please advise if my email is infected with the DNSChanger.

  11. [...] more here: FBI Rolls Eyes to Prevent Internet Outage | NovaInfosec.com Posted in access, at, bots, can, change, Changer, Com, computer, computers, dns, dnschanger, FBI, [...]

Leave a Reply

Your email address will not be published. Required fields are marked *


About Us

Founded in 2008, NoVA Infosec is dedicated to the community of Metro DC-based security professionals and whitehat hackers involved in the government and other regulated verticals. Find out more on our About Us page.