Through clever Javascript programming on a web page, the Symantec report says that “substantive configuration changes to your home broadband router or wireless access point [are possible]. As a result, attackers gain complete control over the conduit by which you surf the Web, allowing them to direct you to sites they designed (no matter what Web address you direct your Web browser to)”.

What the attack does is to change the DNS settings in your router. Now, instead of pointing to legitimate DNS servers, your router is now set to point to rogue DNS servers that intercept all of the traffic that goes into and out of your computer.

The upshot of the attack is that the average computer user will be blissfully unaware that they have been compromised, all the while having the usernames, passwords, banking details and more intercepted by ‘the bad guys’ at will.

It’s a surprising revelation for computer users who think they have taken all of the necessary precautions, because changing the password on your router is not something the average computer user has done.

So, while the Symantec report, linked above, is definitely worth reading, what are the simple steps you can take to ensure you aren’t a victim of this malicious attack?

1. If you don’t know what you’re doing, enlist the help of a friend that is genuinely tech-savvy, or pay for computer help from a company like the Geek Squad.

2. Change the default password on your router, no matter what brand of router you’re using. Just because it was the Netgear, D-Link and Linksys routers that were found to be vulnerable (if the default password wasn’t changed) doesn’t mean that your other brand can’t also be similarly compromised. Make sure the password is very long and contains letters and numbers. Write the password down somewhere safe, and ultimately if you forget the password, almost all routers have a ‘reset button’ on the back which you can press with a pin or paperclip to reset it back to the default settings. Even if you have done everything else in these security steps, if your router is still set to its default password, and you visit a compromised web page, you can still be affected! So this step is vitally important.

3. Ensure you use the strongest level of wireless encryption that your router and your wireless card (either built-in or added to your laptop or desktop computer). Preferably this is WPA or even better, WPA2. WEP encryption is not recommended as it is easily cracked. When using WPA or WPA2, once again, use very long passwords with letters and numbers. If your equipment is old and doesn’t support WPA or WPA2, it might be time to buy a new wireless router and compatible wireless cards for your computers.

4. Set your router to use MAC address filtering, to ensure that only devices that you’ve allowed onto your network can connect to your router. Unfortunately, MAC address spoofing is possible, which means the bad guys can fake your MAC address, so you have to follow all of the other recommendations here – you can’t just rely on MAC addressing.

5. Use one of the latest 2007 Internet Security packages, along with free anti-phising software such as TrustDefender www.trustdefender.com.

6. Once again, if you’re not sure what to do, don’t decide to ‘worry about it later’. Either get help from a genuinely knowledgeable friend, or call in the experts – who these days will come to your home at a time that suits you – and make sure that your computer is appropriately protected against viruses, malware, spyware, spam and has all password protections turned ON.
{moscomment}