Wednesday, 20 May 2015

US Bank Reset Passwords After DNS Attack

Attackers are there in late April failed to adjust the DNS settings of a website of a US bank, allowing visitors to a malicious website were redirected where possible their credentials stolen. The attack was directed against the Federal Reserve Bank of St. Louis.

The attackers modified the IP address of the subdomain , pointing normal to a research site.Through the research site can all kinds of economic data and research information is requested. Of users on 24 April this year on the website tried to log on possible stolen the data, so the bench late in a warning to know which IT journalist Brian Krebs features. Across from CNBC , the bank confirmed the attack. Because of the potential data theft, the bank reset the passwords of all users. How the attackers were able to change the DNS settings is not known.

No comments:

Post a Comment