Users who connect to the Internet through a router and have yet to change the device's default password may be vulnerable to a new type of JavaScript attack, according to Symantec and Indiana University researchers. As CNet reports, a JavaScript code embedded in a malicious web page can exploit a user's browser to log into a router with default login settings and change DNS IP addressses. Through a custom DNS server, a user attempting to visit a major site like Google—or worse, a bank site—could be redirected to a malicious site able to harvest passwords or other personal information.
Symantec researcher Zulfikar Ramzan tells CNet that he has already tested the attack with consumer routers from D-Link, Linksys, and Netgear, and that it's even possible to craft a single page that can attack all vulnerable routers. Ramzan feels that it's "just a matter of time before phishers start using [this attack]."
- Apple: Mac users should run anti-virus software[148]
- Poll: How will the Phenom II do against the competition?[112]
- AMD's 'Shanghai' 45nm Opterons[111]
- Core i7 beats Intel IGP in DirectX 10 software rasterizer[77]
- Vista Service Pack 2 to go gold in April?[70]
- Gabe Newell trash-talks gaming DRM[63]
- Report: Windows market share dips below 90%[62]
- Left 4 Dead Patched: Dedicated Server Searching, Difficulty Settings Addressed
- Evening Reading
- Rock Band Country Music Pack Coming Dec. 16
- PlayStation Store Update: Free Qore, Tons of DLC, Super Stardust PSP and Everyday Shooter PSP
- C&C: Red Alert 3 Patch v1.05, World Builder Released; Includes DRM De-Authorization Tool