Malware Monday?

[nuknuk]

Can somebody explain this on a 3rd grade level please.

 

[bigghorn]

Think Presser was tryin to bro..

 

[BiggerStronger]

Essentially a virus of sorts infected thousands of computers. As far as I know the "virus" changes one of the infected computers network settings - the dns server to one that they control. A dns server is what converts domain names to ip addresses in order to route the requests to the correct end point networks. I.E. when you go to google.com your computer sends a request to the dns server to convert google.com to a ip address and routes the traffic to the ip it returns. The reason why these hackers did this is so they can have their dns servers return addresses pointing to their own servers without the user knowing. Like if an infected user went to wellsfargo.com, but really ended up at an attackers server they could unknowingly give them their banking login or account data and not even know it. It's a very crude form of a virus/malware yet very effective.

 

[Jakeywontoo]

Can somebody explain this on a 3rd grade level please.

Good question!

 

[big in vegas]

Essentially a virus of sorts infected thousands of computers. As far as I know the "virus" changes one of the infected computers network settings - the dns server to one that they control. A dns server is what converts domain names to ip addresses in order to route the requests to the correct end point networks. I.E. when you go to google.com your computer sends a request to the dns server to convert google.com to a ip address and routes the traffic to the ip it returns. The reason why these hackers did this is so they can have their dns servers return addresses pointing to their own servers without the user knowing. Like if an infected user went to wellsfargo.com, but really ended up at an attackers server they could unknowingly give them their banking login or account data and not even know it. It's a very crude form of a virus/malware yet very effective.

I can sort of understand that lol