Internet Disappearing for Thousands of People in July

DNSChangerThe FBI has warned hundreds of thousands of people that they could lose their internet connections in July. That is, of course, if they don't take steps to diagnose and disinfect their computers. The problem that these individuals are facing is related to malware known as DNSChanger, which was first discovered in 2007 and has since infected millions of computers around the world.

Basically, what this malware does is that whenever you type a web address into your browser, your computer contacts DNS servers to discover the numerical IP address of the site you are looking for and then takes you there. The DNSChanger malware messes with an infected computer's settings and directs it to a rogue server set up by an internet Network Security crime ring.

According to an Attorney General for the United States in an FBI press release, these criminals "were intentional cyberbandits who hijacked millions of computers at will and rerouted them to Internet Web sites and advertisements of their own choosing -- collecting millions in undeserved commissions for all the hijacked computer clicks and Internet ads they fraudulently engineered."

However, the FBI busted up the crime ring last year and took control of the rogue servers. Considering so many infected computers relied on the servers to reach the internet, the agency decided not to shut them off and instead converted them to legitimate DNS servers. However, running these servers is costing the government money, which is why they are being turned off in July. If you are one of the unfortunate ones whose computer got infected, the internet will no longer exist for you.

The DNSChanger Working Group (DCWG) has created a website designed to help you diagnose your computer and see if you are infected and remove the DNSChanger if necessary. I'd recommend checking it out, especially before July 8, or you can say goodbye to Facebook, Google and whatever else you use the internet for.

Source: CNET - Web Design could vanish for hordes of people in July, FBI warns
READ MORE - Internet Disappearing for Thousands of People in July

Identity Theft Vulnerability Affects All iPhones, Not Just Jailbroken Ones

iPhone Facebook appsA report surfaced recently about a vulnerability in Facebook that allowed people to access someone else's account. The report initially stated that this vulnerability only affected people on a jailbroken iPhone, however, that doesn't seem to be the case anymore as two new reports are stating that it isn't only jailbroken phones that are at risk.

Gareth Wright, an app developer from the U.K., along with The Next Web have each confirmed, separately, that this new vulnerability affects any and all iPhones, not just jailbroken ones. In addition to that, it has been discovered that the vulnerability originated in Facebook's iPhone app.

Wright released his report earlier in the week and claimed that the iPhone Facebook app includes a vulnerability that fails to encrypt log-on credentials whenever you get on Facebook on your iPhone via the app. Wright also said that he also discovered a Facebook access token in the Draw Something game. Wright copied the token, used the Facebook Query Language and extracted the information.

According to Wright's report, "Sure enough, I could pull back pretty much any information from my Facebook account." Wright also mentioned that the property list of the app contained any and all information needed to allow someone other than you to access your Facebook account, send private messages and do anything else imaginable.

However, Facebook is sticking by their claim that the vulnerability only affects jailbroken phones. In a statement from the social media giant, the company said, "Facebook's iOS and Android applications are only intended for use with the manufacture provided operating system, and access tokens are only vulnerable if they have modified their mobile OS (i.e. jailbroken iOS or modded Android) or have granted a malicious actor access to the physical device."

That may have been believable had The Next Web not released their very own report separate from Wright's. The Next Web confirmed themselves that the vulnerability also affects non-jailbroken phones. However, The Next Web also found that Dropbox also suffers from the same vulnerability, leaving the application open to a property list hack.

According to The Next Web, "We copied the .plist from one device, with the app installed and logged in, over to another which had a fresh installation of Dropbox on it. The profile copied and it worked seamlessly, as if we had logged on ourselves, which we had not." The Next Web also added that the Dropbox vulnerability works on phones that are passcode protected.

Facebook keeps saying that the vulnerability is only on jailbroken phones, though with the reports from Wright and The Next Web, I don't know how much longer the social media company can keep that story going.

Source: CNET - facebook ID theft impacts all iPhones, Dropbox
READ MORE - Identity Theft Vulnerability Affects All iPhones, Not Just Jailbroken Ones