Information FBI - Got Alureon? No more Internet.

Discussion in 'Tech Security News' started by Hengis, Jul 5, 2012.

Recommended: Click here to Fix Errors and Optimize Windows

Page 1 of 2

  1. Hengis PCHF Manager

    Manager
    PCHF Staff
    Message Count:
    39,373
    Likes Received:
    4,978
    My System
    Loading...
    Warning from FBI: If you have 'Alureon' virus on your PC, you WILL get kicked off internet on Monday
    • Hundreds of thousands of PCs still at risk worldwide
    • Virus 'spoofs' popular websites in attempt to steal personal information
    • Around 50 Fortune 500 companies still have virus in their machines
    • FBI 'ring-fenced' the virus late last year - but protection ends on Monday
    • Scroll down for advice on checking your PC
    If you have a virus on your machine, there is a very real risk you will get kicked off the internet on Monday.
    Web-users are being warned to ensure their computers are clear of the nasty 'Alureon/DNS Changer bot'.
    This piece of software found its way onto hundreds of thousands of computers worldwide late last year. The software was designed to re-direct you away from trusted websites, towards spoof websites in a bid to steal financial and personal information.



    When the attack was noticed, the FBI took the unusual step of setting up a 'safety-net', routing infected machines through their server to stop the 'spoof' attacks.

    But these servers will be taken down on Monday, and when this happens, people still infected are likely to lose their internet connection without warning.
    Hengis, Jul 5, 2012
    #1

  2. sodapop554 Elite Member

    Elite
    Message Count:
    701
    Likes Received:
    7
    My System
    Loading...
    That's the only way? It won't show via my router settings?
    sodapop554, Jul 5, 2012
    #2

  3. Crush Administrator & Security Team Leader

    Manager
    PCHF Staff
    Message Count:
    39,837
    Likes Received:
    3,646
    My System
    Loading...
    Crush, Jul 5, 2012
    #3

  4. Google Advertisement

  5. AMK Certified Computer Geek

    Tech Member
    Message Count:
    734
    Likes Received:
    38
    My System
    Loading...
    20,000 PCs in the UK could be cut off from the web on Monday 9 July 2012, as a consequence of the DNS Changer virus.
    EDIT: This issue is NOT limited to the UK. Attention is suggested worldwide. ~DCiAdmin
    Infected machines will no longer be able to access websites, e-mail, chat or social networking sites such as Facebook, according to the FBI.

    [IMG]

    Worldwide, 350,000 computers could lose web access on Monday because of the DNS Changer virus, the FBI has warned.
    The malware, a variant of the Zlob family of Trojans, is designed to tell the infected computer to use a rogue Domain Name System (DNS) server, which directs the browser to hacker-owned websites.
    Infected machines then replace legitimate advertisements with ads the criminals try to monetise via click fraud. The cyber criminals are thought to have made £9.1m from the scam.
    In 2011, an international group of law enforcement agencies, including the FBI, arrested the group operating DNS Changer malware botnets. But hundreds of thousands of computers remain infected and are currently using interim systems set up by the FBI to access the internet.
    But after 9 July, 2012, all computers still infected with DNS Changer malware will no longer be able to access websites, e-mail, chat or social networking sites such as Facebook, when the temporary systems will be disabled because of high operating costs.
    The DNS Changer Working Group estimates that there are more than 350,000 devices still infected with DNS Changer, out of the 4 million originally affected by the malware.
    When the FBI turns off the temporary access systems, it could leave infected machines without access to the web.
    It is estimated 20,000 of these machines are in the UK, according to the Telegraph.
    In June, Facebook joined the DNS Changer Working Group (DCWG), aimed at cleaning up the malware.
    As a result of Facebook's work with the DCWG, the social networking site said it is now able to notify users likely to be infected with DNS Changer malware and direct them to instructions on how to clean their computer or networks.
    Facebook's decision to notify users who have infected computers follows a similar decision by Google, which started alerting users of DNS Changer infections in May.
    AMK, Jul 6, 2012
    #4

  6. DCiAdmin Administrator & Tech Team Leader

    Manager
    PCHF Staff
    Message Count:
    24,409
    Likes Received:
    3,338
    My System
    Loading...
    Additional information is available at technolog.msnbc.msn.com

    This site, http://www.dcwg.org/detect/, offers several URLs to quickly check your system for DNS Changer malware. A GREEN banner indicates that the PC is DNS Changer "free", while a RED banner would indicate installed DNS Changer malware.

    PCHF's trained Security specialists are available to assist you should you have a RED banner indicating that you have DNS Changer malware installed on your PC.
    DCiAdmin, Jul 6, 2012
    #5
    Crush and AMK like this.

  7. AMK Certified Computer Geek

    Tech Member
    Message Count:
    734
    Likes Received:
    38
    My System
    Loading...
    Thanks for that addition... Very useful.
    I think, i myself will give it a try... You can never be too safe ;)

    i advice everyone to do so as well.....
    AMK, Jul 6, 2012
    #6

  8. AMK Certified Computer Geek

    Tech Member
    Message Count:
    734
    Likes Received:
    38
    My System
    Loading...
    *ye% Now I know I'm free of DNS Changer *ye%
    :mrgreen:

    [IMG]
    AMK, Jul 6, 2012
    #7

  9. Hengis PCHF Manager

    Manager
    PCHF Staff
    Message Count:
    39,373
    Likes Received:
    4,978
    My System
    Loading...
    Hengis, Jul 8, 2012
    #8
    Crush likes this.

  10. Crush Administrator & Security Team Leader

    Manager
    PCHF Staff
    Message Count:
    39,837
    Likes Received:
    3,646
    My System
    Loading...
    Crush, Jul 8, 2012
    #9

  11. Crush Administrator & Security Team Leader

    Manager
    PCHF Staff
    Message Count:
    39,837
    Likes Received:
    3,646
    My System
    Loading...
    About 9.5 hours here since this infection was set to take out internet. Just bumping this if anyone hasn't seen it.

    Not that you'd be able to from an infected machine :D
    Crush, Jul 9, 2012
    #10

  12. Wolfeymole Elite PCHF Werewolf

    I've Donated!
    Tech Member
    Message Count:
    20,467
    Likes Received:
    1,287
    My System
    Loading...
    I'm having to connect spiritually, will this affect my Anti Virus? :D
    Wolfeymole, Jul 9, 2012
    #11
    vger and Crush like this.

  13. vger STAFF

    PCHF Staff
    Message Count:
    17,748
    Likes Received:
    1,447
    My System
    Loading...
    I scanned all my PCs yesterday,using one of the AV recommended by that link..good here..

    I will have to try that psychic internet connection tho...::whistling::
    vger, Jul 9, 2012
    #12

  14. Crush Administrator & Security Team Leader

    Manager
    PCHF Staff
    Message Count:
    39,837
    Likes Received:
    3,646
    My System
    Loading...
    The thing is Veeg, this generally won't show up in AV scans. So, best to check using the websites above
    Crush, Jul 9, 2012
    #13

  15. Wolfeymole Elite PCHF Werewolf

    I've Donated!
    Tech Member
    Message Count:
    20,467
    Likes Received:
    1,287
    My System
    Loading...
    Certain aspects of this virus may turn out to be nothing more than hyperbole as illustrated in this comment from today's Daily Mail...



    Wolfeymole, Jul 9, 2012
    #14

  16. vger STAFF

    PCHF Staff
    Message Count:
    17,748
    Likes Received:
    1,447
    My System
    Loading...
    Check the last part of my sentence...
    vger, Jul 9, 2012
    #15
Page 1 of 2

FBI - Got Alureon? No more Internet.

Recommended: Click here to Fix Errors and Optimize Windows