• In-the-wild router exploit sends unwitting users to fake banking site

    2 monthes ago - By Ars Technica

    Enlarge
    Hackers have been exploiting a vulnerability in DLink modem routers to send people to a fake banking website that attempts to steal their login credentials, a security researcher said Friday.
    The vulnerability works against DLink DSL-2740R, DSL-2640B, DSL-2780B, DSL-2730B, and DSL-526B models that haven't been patched in the past two years. As described in disclosures here , here , here , here , and here , the flaw allows attackers to remotely change the DNS server connected computers use to translate domain names into IP addresses.
    According to an advisory published Friday...
    Read more ...