Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

'Drive-by pharming' security alert on web

Started by Retired Tech , Feb 20 2007 08:31 AM

  • Please log in to reply

#1
Retired Tech
Posted 20 February 2007 - 08:31 AM

Retired Tech

    Retired Staff

  • Retired Staff
  • 20,563 posts
Drive-by pharming relies on the fact that the majority of users do not change the password needed to change their router’s setting from the manufacturers’ default setting – often simply the word “password”.

To carry out the attack all someone has to do is persuade a computer user to visit a website they have set up, potentially via an advert on Google or a link from a spam email.

The website contains a piece of computer code that hacks into the user’s router - unless they have changed their password - and changes the DNS server settings.

This means for example that the attacker now can direct requests for the user’s bank website to fake websites he or she has set up – potentially websites that precisely mirror the bank’s real site.

In Depth Information

Brief Outline
  • 0

Advertisements

#2
dsenette
Posted 20 February 2007 - 08:45 AM

dsenette

    Je suis Napoléon!

  • Community Leader
  • 26,047 posts
  • MVP
http://www.geekstogo...y_-t149469.html beat you to it :whistling:
  • 0

#3
Retired Tech
Posted 20 February 2007 - 08:57 AM

Retired Tech

    Retired Staff

  • Topic Starter
  • Retired Staff
  • 20,563 posts
Not in the networking forum :whistling:
  • 0

#4
dsenette
Posted 20 February 2007 - 09:02 AM

dsenette

    Je suis Napoléon!

  • Community Leader
  • 26,047 posts
  • MVP
it's a really interesting process....just reading the proof of concept...it's a pretty devestating effect...coupled with the fact that just about nobody changes the default username/password....it COULD affect alot of people..
  • 0

#5
Pluto56
Posted 20 February 2007 - 09:05 AM

Pluto56

    Member

  • Member
  • PipPipPip
  • 160 posts
thanks for the info guys. I read Dsenette's thread yesterday, first thing I did after was change mine.
Thanks again! :whistling:
  • 0
Back to Networking · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Hardware
  3. Networking

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP