Hackers Hijack Routers’ DNS to Spread Malicious COVID-19 Apps

[LASER_oneXM]

Content source

https://www.bleepingcomputer.com/news/security/hackers-hijack-routers-dns-to-spread-malicious-covid-19-apps/

A new cyber attack is hijacking router's DNS settings so that web browsers display alerts for a fake COVID-19 information app from the World Health Organization that is the Oski information-stealing malware.

For the past five days, people have been reporting their web browser would open on its own and display a message prompting them to download a 'COVID-19 Inform App' that was allegedly from the World Health Organization (WHO).

After further research, it was determined that these alerts were being caused by an attack that changed the DNS servers configured on their home D-Link or Linksys routers to use DNS servers operated by the attackers.

As most computers use the IP address and DNS information provided by their router, the malicious DNS servers were redirecting victims to malicious content under the attacker's control.
... ... ...

 

[Antus67]

These scum bag low life cyber garbage prey on the innocent people that are desperate for information on this virus outbreak need to be taught a lesson about being human........naw............... they have a IQ of about 2 points above plant life.

 

[Venustus]

Cybersecurity experts come together to fight coronavirus-related hacking — Platform Executive

An international group of almost 400 volunteers with expertise in cybersecurity formed on Wednesday to fight hacking related to the novel

www.platformexecutive.com

 

[upnorth]

New Router DNS Hijacking Attacks Abuse Bitbucket to Host Infostealer

Bitdefender researchers have recently found a new attack that targets home routers and changes their DNS settings to redirect victims to a malware-serving website that delivers the Oski infostealer as a final payload.

labs.bitdefender.com