Thu, Aug 17, 2017 | updated 11:49 AM IST

Switcher Trojan: Android joins 'attack-the-router' club

Updated: Dec 29, 2016 12:11 IST      
Switcher Trojan: Android joins 'attack-the-router' club

New Delhi [India], Dec.29 (ANI): Kaspersky Lab experts have uncovered a remarkable evolution in Android OS malware: the Switcher Trojan. It treats unsuspecting Android device users as tools to infect Wi-Fi routers, changing the routers' DNS settings and redirecting traffic from devices connected to the network to websites controlled by the attackers, leaving users vulnerable to phishing, malware and adware attacks and more. The attackers claim to have successfully infiltrated 1,280 wireless networks so far, mainly in China.

Domain Name Servers (DNS) turn a readable web address such as 'x.com' into the numerical IP address required for communications between computers. The ability of the Switcher Trojan to hijack this process gives the attackers almost complete control over network activity which uses the name-resolving system, such as internet traffic. The approach works because wireless routers generally reconfigure the DNS settings of all devices on the network to their own - thereby forcing everyone to use the same rogue DNS.

The infection is spread by users downloading one of two versions of the Android Trojan from a website created by the attackers. The first version is disguised as an Android client of the Chinese search engine, Baidu, and the other is a well-made fake version of a popular Chinese app for sharing information about Wi-Fi networks: WiFi????.

When an infected device connects to a wireless network, the Trojan attacks the router and tries to brute-force its way to the web admin interface by guessing the password, relying on a long, predefined list of password and login combinations. If the attempt is successful, the Trojan exchanges the existing DNS server for a rogue one controlled by the cybercriminals, and also a secondary DNS, to ensure ongoing stability if the rogue DNS goes down.

The attackers have built a website to promote and distribute the Trojanized Wi-Fi app to users. The web server that hosts this site doubles as the malware authors' command-and-control (C&C) server. Internal infection statistics spotted on an open part of this website reveal the attackers' claims to have compromised 1,280 websites - potentially exposing all the devices connected to them to further attack and infection.

"The Switcher Trojan marks a dangerous new trend in attacks on connected devices and networks. It does not attack users directly. Instead, it turns them into unwilling accomplices: physically moving sources of infection. The Trojan targets the entire network, exposing all its users, whether individuals or businesses, to a wide range of attacks - from phishing to secondary infection. A successful attack can be hard to detect and even harder to shift: the new settings can survive a router reboot, and even if the rogue DNS is disabled, the secondary DNS server is on hand to carry on. Protecting devices is as important as ever, but in a connected world we cannot afford to overlook the vulnerability of routers and Wi-Fi networks," said Nikita Buchka, mobile security expert, Kaspersky Lab.

The company recommends that all users check their DNS settings and search for the following rogue DNS servers:

• 101.200.147.153

• 112.33.13.11

• 120.76.249.59

If you have one of these servers in your DNS settings, contact your ISP support or alert the owner of the Wi-Fi network. Kaspersky Lab also strongly advises users to change the default login and password to the admin web interface of your router to prevent such attacks in the future. (ANI)

Nokia's flagship Android device, soon at a store near you!

Updated: Aug 17, 2017 09:15 IST     

New Delhi [India], August 17 (ANI): The much-awaited Nokia 8, which was launched in London by HMD Global, is all set to hit the market in early September this year, and is reportedly entering the Indian market early October.

Full Story >>

London [United Kingdom], Aug.16 (ANI): The make-up of the modern home is changing, bringing with it a new era of household 2.0 which, on average, cares for 2.4 people , 0.3 pets and now also 6.3 connected devices per home.

Full Story >>

New Delhi [India], August 16 (ANI): ASUS Republic of Gamers (ROG) on Wednesday announced the launch of Zephyrus, the world's slimmest gaming laptop powered by a seventh generation Intel Core i7 (Kaby Lake) processor and the latest NVIDIA GeForce GTX 1080 graphics, and priced at Rs. 2,99,990.

Full Story >>

New Delhi [India], August 16 (ANI): In the recent past, devices have become seemingly important in an average household, be it to cater to one's parents, children, home needs or even their pets. This new 'Household 2.0' era is set to be fueled further with the latest updates on Kaspersky Lab's flagship home security solutions, Kaspersky Internet Security and Kaspersky Total Security.

Full Story >>

Honor 8 Pro conferred with EISA Consumer Smartphone award

Updated: Aug 16, 2017 15:16 IST     

New Delhi [India], August 16 (ANI): Smartphone aggregator Honor received an accolade from the European Imaging and Sound Association (EISA), which bestowed on Honor 8 Pro, the 'EISA Consumer Smartphone 2017 - 2018' Award.

Full Story >>

eMudhra registers 20 mn eSigns within two years

Updated: Aug 16, 2017 13:53 IST     

New Delhi [India], August 16 (ANI): eMudhra, a digital identity and transaction management space on Wednesday announced that it has received issuance of over 20 million eSigns, since its inception in July 2015, surpassing its 2.5 million eSigns target which was set at the end of 2016.

Full Story >>

New Delhi [India], Aug 16 (ANI): PeopleStrong today announced the selection of Amazon Web Services (AWS) as its preferred cloud infrastructure provider. PeopleStrong is one of the fastest growing HR Technology and Solutions companies in India, with over 175 customers spread across all major industries.

Full Story >>

Google unveils Allo for Chrome, exclusively for Android users

Updated: Aug 16, 2017 10:10 IST     

New York [U.S.A.], August 16 (ANI): Tech-giant Google has unveiled 'Allo', its smart messaging app on its Chrome web browser, exclusively for its Android user base.

Full Story >>

London [United Kingdom], Aug.15 (ANI): Kaspersky Lab introduces its new freemium application, Kaspersky Secure Connection for Android, designed to protect user data transmitted via the Internet. This app's main feature is its adaptivity: for convenience and maximum user protection, traffic encryption can be enabled automatically depending on the level of security of the Wi-Fi network to which the device is connected, as well as on sites and applications that are opened.

Full Story >>

Indus Towers deploys Oracle Taleo Cloud Services

Updated: Aug 14, 2017 11:14 IST     

New Delhi [India], Aug 14 (ANI): Indus Towers, India's largest telecom infrastructure company today announced the deployment of Oracle Taleo Cloud Services to streamline its recruiting processes for faster recruitment and better collaboration in the cloud.

Full Story >>

Watch out gamers! Here are some best gaming laptops for you

Updated: Aug 12, 2017 15:33 IST     

New Delhi [India], Aug 12 (ANI): The gaming market in India is growing at a rapid pace and consumers in India nowadays are showing more inclination towards the latest gaming tech.

Full Story >>

New Delhi [India], Aug 12 (ANI): Looking forward to the extended Independence weekend, with utmost relaxation and ease on mind. These online entertainment platforms available on your will ensure your weekend sails through seamlessly with just a few clicks. All entertainment, movie flicks, TV series, original content on a single click.

Full Story >>

New Delhi [India], August 11 (ANI): Hike has created an array of stickers and filters for fans to enjoy the multi-starrer VIP2.

Full Story >>

Noida (Uttar pradesh) [India], Aug.10 (ANI): National Knowledge Network (NKN) conceptualized by Government of India in 2010 has been successfully connecting educational and research institutions in the country and is currently perceived globally as a leading research and education network (REN).

Full Story >>

New Delhi [India], Aug 10 (ANI): Oracle sees a very vibrant and active software development scenario in India, with developers working on all spectrums of technology. In particular, Oracle finds there's more developer appetite for cutting edge technologies such as Containers, Chatbots etc. for building innovative applications.

Full Story >>

New Delhi [India], Aug 10 (ANI): Google on Thursday introduced the latest update to Search, making it easier than ever for users to stay in the know and get relevant information quickly and easily.

Full Story >>

LG Q6 brings full vision display to new smartphone lineup

Updated: Aug 09, 2017 13:39 IST     

New Delhi [India], Aug 9 (ANI): LG Electronics has announced the launch of its first smartphone under the new Q series called the LG Q6 at Rs. 14,990 in India. The Q series will offer many of LG's most sought after, premium features at an extremely attractive price.

Full Story >>

New Delhi [India], Aug 9 (ANI-BusinessWireIndia): In response to the recent incidents of crime perpetrated against women in India, Asscento Systems, a Mobile App development start-up, based in Chennai (India), announces the launch of "Rescuer" a new, women safety mobile app for free downloads.

Full Story >>

New Delhi [India], August 8 (ANI): IBM (NYSE: IBM) and Telecom Sector Skill Council (TSSC) have reached an agreement to explore how the organisations can build technology skills across the telecom sector ecosystem in India.

Full Story >>

New York [USA], August 8 (ANI): After reports of a derogatory memo within the company branding women as 'biologically unfit' for tech roles came to light, Google CEO Sundar Pichai, who left his family vacation midway to resolve the ongoing crisis said portions of the memo 'crossed the line', by instigating gender stereotypes.

Full Story >>