Internet doomsday virus appears to fizzle

10 Jul 2012, 6:50 am   -   Source: AAP
Share This
+ Comment
1
The ring behind the DNS Changer was shut down last year by the US Federal Bureau of Investigation (FBI), Estonian police and other law enforcement agencies, after infecting some four million computers worldwide. (Getty)

The ring behind the DNS Changer was shut down last year by the US Federal Bureau of Investigation (FBI), Estonian police and other law enforcement agencies, after infecting some four million computers worldwide. (Getty)

A virus with the potential to black out tens of thousands of computers worldwide appears to have caused no major problems in the hours after a fix expired.

RELATED

The so-called internet doomsday virus with the potential to black out tens of thousands of computers worldwide appeared to pose no major problems in the hours after a fix expired.

Security firms reported no significant outages linked to the DNS Changer virus, as many internet service providers have either implemented a fix or contacted customers with steps to clean their computers.

The problem stems from malware known as DNS Changer, which was created by a cybercriminals to redirect internet traffic by hijacking the domain name systems (DNS) of web browsers.

The ring behind the DNS Changer was shut down last year by the US Federal Bureau of Investigation (FBI), Estonian police and other law enforcement agencies, after infecting some four million computers worldwide.

Nearly 300,000 computers appeared to be still infected as of June, according to experts monitoring the problem.

On Monday, temporary servers set up by the FBI to direct internet traffic normally, even for infected computers, were shut down.

But security specialists said most internet users and providers have had time to work around or fix the problem.

"Many global operators are keeping their DNS Changer victims online, even after FBI stopped. We do not expect much noise about this today," said Mikko Hypponen, chief research officer at the Finland-based firm F-Secure, in a Twitter message.

Johannes Ullrich of the SANS Security Institute said that for computers running Windows, the computer "may actually revert to the default settings once the DNS server is turned off".

"If you used the bad DNS server, chances are that various entities tried to notify you. Google for example should have shown you a banner."

Additionally, Ullrich said the malware is "old enough where antivirus, if you run any, should have signatures for it".

Six Estonians and a Russian were charged in Estonia in November with infecting computers, including NASA machines, with the malware as part of an online advertising scam that reaped at least $US14 million.

Because the virus controlled so much internet traffic, authorities obtained a court order to allow the FBI to operate replacement servers until July 9.

  • Follow us: 
  • Follow us on Facebook
  • Follow us on Twitter
  • Follow us on Youtube

Your Comments

doomsday virus.

oncewas - from bribie island, 11 months ago

reminds me of the alarm as 31.12.1999 approached. and that wasn't even the end of the 20 th century. wonder who made money out of this one.

Join the Discussion

Name
City / Suburb E.g. Artarmon, Sydney
Title
Comment
You have characters remaining.
Validation
What's this?
This is a captcha-picture. It is used to prevent mass-access by robots.
All submitted comments become the property of SBS. They are moderated, so we reserve the right to edit comments and remove HTML tags. Not all submitted comments will be published. Publication does not mean we endorse the opinions expressed. Please read our terms and conditions for more information.