Do I need to worry about this DNA changer malware?
Do I need to worry about the dns changer malware on my ipad2 and iPhone 4w Siri?
iPad 2 Wi-Fi, iOS 5.1.1, I also have an iPhone 2 w Siri
No.
Want to highlight a helpful answer? Upvote!
Did someone help you, or did an answer or User Tip resolve your issue? Upvote by selecting the upvote arrow. Your feedback helps others! Learn more about when to upvote >
Did someone help you, or did an answer or User Tip resolve your issue? Upvote by selecting the upvote arrow. Your feedback helps others! Learn more about when to upvote >
26 replies
Yes, there are DNS-changing attacks against OS X and various sites have details.
Technically, if somebody manages to co-opt your local DNS services settings or compromise your IP routing, you're toast. This in general, not just in the case of this particular malware.
And if you download and install anything - anything - that's offered to you - anything that you didn't go looking for - then there's a decent chance that you're now toast.
Bottom line: check that your DNS servers and your network routing are as you expect (or as your ISP has established), and that you're using secure transports to connect to mail and other password-based services, that you're careful with what certificates you approve, that you always select truly solid passwords, and that you don't install OS X software that's been offered to you (that you didn't go looking for).
Recognize that any time you enter your administrative password during an installation, you're granting full access.
Have a good and deep set of backups. (That's often your easiest path back, if your security gets breached.)
These are usual security recommentations and certainly apply to OS X, as they have to Windows.
The App Store is rather safer source for apps in this regard, though there have been recent reports alleging malware even there.
While your statements concerning OS X are to a certain degree true, there is no known version of this malware for iOS.
The statements are correct for OS X. (This was originally posted in an OS X forum.)
I missed that this was an iOS question, though. Clearly. (So much for my ability to read.)
And iOS is certainly vulnerable to DNS attacks. Any time you connect to an untrusted network, you're potentially offered bogus DNS services. Security protocols apply.
I have seen two contradictory statements about dns changer. One said it cannot infect the iphone. the other said it can. How can I learn the truth?
My response is specific to OS X, the forum where this was originally posted.
The specific Trojan that the OP is asking about is not available on iOS, and would likely be blocked by how iOS is configured and managed, and how apps are approved and loaded from the iOS App Store.
The basic network attack that underlies the trojan is possible on iOS (and any other IP network device), though not through software that loaded onto the iOS device. That'd require a review failure and a security failure within iOS and the App Store, or a jailbroken or otherwise side-loaded Trojan.
Put another way, you need to use secure protocols to access trusted services, and you need to be careful with your passwords, with what certificates you install on your iOS device (and mark as trusted), and related security practices.
The coffee shop network can be monitoring (unencrypted) network traffic from your iOS device, and the folks at certain of the more "aggressively-operated" security conferences have had all of their traffic monitored for any unencrypted traffic, or insecure certificate usage, or for device firmware updates.
An untrusted network is an untrusted network, irrespective of your use of iOS.
DNS Changer cannot infect an iOS device. Any site that claims otherwise is wrong. As others have pointed out, though, an iOS device can be affected by DNS Changer poisoning DNS services being provided by a computer (i.e. being used via Internet Sharing to connect the iOS device to the Internet).
Regards.
Yes!!!
Wrong.
Depending on the kind of IOS yo have it is different to check visit the website above if the screen is green you are fine if its red the website will give you insructions on how to fix the problem. If you have any more questions feel free to ask over the past two hours I have researched this topic:)
You do need to worry but only for older devices with lower IOS
Please post a link supporting your claim.
Madster73 wrote:
You do need to worry but only for older devices with lower IOS
No. There is not a version for iOS. It is possible, however, that your router is infected, or your ISP's DNS server has been effected. MAC OS is absolutely not immune, but pretty easy to disinfect.
This is NOT a new malware. It has been around for several years, but has proven to be persistent. The reason for all the media attention this week is that the the FBI plans to shut down infected DNS servers on Monday. Anyone with an infected machine may have difficulty accessing the Internet if their machine is pointing to one of these servers.
http://forms.fbi.gov/check-to-see-if-your-computers-using-rogue-DNS
Theese are also to links that provide helpful service to me and may help you with your problems.
Do I need to worry about this DNA changer malware?