It’s being reported that a new cyberattack is hijacking router’s DNS settings so that web browsers display alerts for a fake COVID-19 information app from the World Health Organization that is the Vidar information-stealing malware.
For the past five days, people have been reporting their web browser would open on its own and display a message prompting them to download a ‘COVID-19 Inform App’ that was allegedly from the World Health Organization (WHO). After further research, it was determined that these alerts were being caused by an attack that changed the DNS servers configured on their home D-Link or Linksys routers to use DNS servers operated by the attackers.
Experts Comments
Submit Your Expert Comments
What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.Be part of our growing Information Security Expert Community (1000+), please register here.
Linkedin Message
@Laurence Pitt, Global Security Strategy Director, provides expert commentary at @Information Security Buzz.
"Most internet providers today provide routers that have a decent strength default security setup. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/hackers-hijack-routers-to-spread-malicious-covid-19-apps-networks-expert-comments
Facebook Message
@Laurence Pitt, Global Security Strategy Director, provides expert commentary at @Information Security Buzz.
"Most internet providers today provide routers that have a decent strength default security setup. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/hackers-hijack-routers-to-spread-malicious-covid-19-apps-networks-expert-comments