Results 1 to 6 of 6

Thread: DNS Trojan

  1. #1
    Senior Member Giraffe's Avatar
    Join Date
    Feb 2007
    Location
    near Northampton
    Posts
    841
    Thanks
    34
    Thanked
    39 times in 34 posts
    • Giraffe's system
      • Motherboard:
      • Gigabyte GA-Z97-D3H
      • CPU:
      • Intel Core i5 5675C, S 1150, Broadwell, Quad Core, 3.1GHz, 3.6GHz Turbo
      • Memory:
      • Crucial Ballistix DDR3 1600, 4GB
      • Storage:
      • 512GB Samsung SSD, 850 Pro, SATA 3
      • Graphics card(s):
      • Integrated
      • PSU:
      • Seasonic S12G 450W 80+ Gold
      • Case:
      • Antec P100
      • Operating System:
      • Windows 7 Pro, 32-bit
      • Monitor(s):
      • Dell U2415, 24", 16:10
      • Internet:
      • TP-Link modem-router; 3mbps sync.

    DNS Trojan

    Looks as if the use of a router as a firewall could be challenged as there's a trojan that changes DNS settings.

    http://news.cnet.com/8301-10784_3-99...g=2547-1_3-0-5
    PeterC

    Political lubricant:

    Rocket WMD45

  2. #2
    Splash
    Guest

    Re: DNS Trojan

    Unless I'm much mistaken this is pretty old news and requires either (dependent on the variant) that you have a particular router, and haven't changed the admin password OR that you have UPnP enabled.

  3. #3
    Senior Member Giraffe's Avatar
    Join Date
    Feb 2007
    Location
    near Northampton
    Posts
    841
    Thanks
    34
    Thanked
    39 times in 34 posts
    • Giraffe's system
      • Motherboard:
      • Gigabyte GA-Z97-D3H
      • CPU:
      • Intel Core i5 5675C, S 1150, Broadwell, Quad Core, 3.1GHz, 3.6GHz Turbo
      • Memory:
      • Crucial Ballistix DDR3 1600, 4GB
      • Storage:
      • 512GB Samsung SSD, 850 Pro, SATA 3
      • Graphics card(s):
      • Integrated
      • PSU:
      • Seasonic S12G 450W 80+ Gold
      • Case:
      • Antec P100
      • Operating System:
      • Windows 7 Pro, 32-bit
      • Monitor(s):
      • Dell U2415, 24", 16:10
      • Internet:
      • TP-Link modem-router; 3mbps sync.

    Re: DNS Trojan

    Ah, OK, I'd not seen it before - sorry.
    PeterC

    Political lubricant:

    Rocket WMD45

  4. #4
    Get in the van. Fraz's Avatar
    Join Date
    Aug 2007
    Location
    Bristol
    Posts
    2,919
    Thanks
    284
    Thanked
    397 times in 231 posts
    • Fraz's system
      • Motherboard:
      • Gigabyte X58A-UD5
      • CPU:
      • Watercooled i7-980X @ 4.2 GHz
      • Memory:
      • 24GB Crucial DDR3-1333
      • Storage:
      • 240 GB Vertex2E + 2 TB of Disk
      • Graphics card(s):
      • Water-cooled Sapphire 7970 @ 1175/1625
      • PSU:
      • Enermax Modu87+
      • Case:
      • Corsair 700D
      • Operating System:
      • Linux Mint 12 / Windows 7
      • Monitor(s):
      • Dell 30" 3008WFP and two Dell 24" 2412M
      • Internet:
      • Virgin Media 60 Mbps

    Re: DNS Trojan

    Well, only if you leave the default username + password on your router, in which case I think you'd be a dumbass who deserves it...

  5. #5
    Splash
    Guest

    Re: DNS Trojan

    As I said, it depends on the variant. There's one which utilises UPnP to reconfigure your router and that requires no authentication. And no need to apologise Giraffe - you're probably not the only person who'd heard of it, in which case it's worth bringing to people's attention.

    But yes, it's scary the number of people who leave a router with it's default credentials, even in (scratch that, ESPECIALLY in) enterprise situations.

  6. #6
    radix lecti dave87's Avatar
    Join Date
    Sep 2005
    Location
    England
    Posts
    12,806
    Thanks
    657
    Thanked
    931 times in 634 posts
    • dave87's system
      • Motherboard:
      • Asus
      • CPU:
      • i5 3470k under Corsair H80 WC
      • Memory:
      • 8gb DDR3
      • Storage:
      • 240gb SSD + 120gb SSD
      • Graphics card(s):
      • Asus HD7950
      • PSU:
      • XFX 600w Modular
      • Case:
      • Lian Li PC-A05FNB + Acoustipack
      • Operating System:
      • Windows 10 Pro
      • Monitor(s):
      • 2x Dell S2309W (1920x1080)
      • Internet:
      • BT Infinity Option 2

    Re: DNS Trojan

    Yup, some of the schools that shared the same RM kit as the one I worked in suddenly wondered why they couldn't perform basic admin tasks.

    Turns out, one of the RM engineers had a sense of humour, and the default password for one of the accounts was aptly named 'changeme'. Most schools did. Except a few....

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. vigor 2800G firmware upgrade query
    By pawz in forum Networking and Broadband
    Replies: 35
    Last Post: 20-08-2007, 01:00 AM
  2. Named DNS
    By Vini in forum Software
    Replies: 10
    Last Post: 22-08-2005, 09:38 PM
  3. slow domain log-on
    By oshta in forum Networking and Broadband
    Replies: 14
    Last Post: 16-10-2004, 07:47 PM
  4. ADSL DNS nightmare... I think it's DNS anyhoo
    By Tumble in forum Networking and Broadband
    Replies: 5
    Last Post: 03-03-2004, 01:02 PM
  5. Forum Speed
    By DR in forum General Discussion
    Replies: 10
    Last Post: 04-01-2004, 11:58 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •