Hackers exploit router flaws in unusual pharming attack
An email-based attack spotted in Brazil recently employed an unusual but potent technique to spy on a victim’s Web traffic.
The technique exploited security flaws in home routers to gain access to the administrator console. Once there, the hackers changed the routers’ DNS (Domain Name System) settings, a type of attack known as pharming.
[ Also on ITworld: Top 10 DNS attacks likely to infiltrate your network ]
Pharming is tricky to pull off because it requires access to an ISP’s or an organization’s DNS servers, which translate domain names into the IP addresses of websites. Those DNS systems are typically well-protected, but home routers often are not.