Over the last weeks we’ve seen an increase in cases where DNS poisoning has been used to make money. DNS poisoning is when attackers ‘poison’ a DNS server so that it gives a different address to a certain DNS entry.
For example this will mean that with a poisoned DNS server a query to www.microsoft.com will lead to a malicious site which wants to install malware. This of course can also be done in the case of banking websites.
There have been some products vulnerable to DNS poisoning and from what I see on the web I’m inclined to believe attackers are actively looking for more vulnerable products.
The scary thing about DNS poisoning is that no matter how clean your own PC is, you can never be sure if the site you are visiting is the one you intended to visit.