A massive DNS cache poisoning attack is current affecting millions of users in Brazil.
"Several large ISPs in the highly connected country have been affected by the attack, and police have made at least one arrest in connection with the operation," writes Threatpost's Dennis Fisher.
"An analysis of the attack by Fabio Assolini, a Kaspersky Lab researcher in Brazil, shows that attackers have been able to poison the DNS cache records for several major Web sites at some large ISPs," Fisher writes. "So when users attempt to connect to a site such as Google through one of the affected ISPs, they are redirected to a site that insists they install a small Java applet in order to continue. That applet, of course, is malware."
Go to "Major DNS Cache Poisoning Attack Hits Brazilian ISPs" to read the details.https://o1.qnsr.com/log/p.gif?;n=203;c=204650394;s=9477;x=7936;f=201801171506010;u=j;z=TIMESTAMP;a=20392931;e=i
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.