Cybercriminals are coming up with new ways to get at your personal data all the time. Recently, hackers showed that they could use a simple phishing email to hack into your router and eventually steal your sensitive financial information. Luckily, there's something really simple you can do to prevent the attack.
Recently, some Internet users in Brazil received emails that looked like they were from their Internet service provider, but they were actually phishing emails sent by hackers. Security company Proofpoint found that if users clicked the link in the email, it sent them to a fake website that ran malicious code that added the hackers' DNS server to the victim's router.
“There is virtually no trace of this thing except for an email,” said Kevin Epstein, vice president of advanced security and governance at Proofpoint. “And even if your average user knows to look at his router’s DNS settings, he’s unlikely to notice anything wrong or even know what his normal DNS settings should be.”
A DNS server is a website directory that helps your browser connect to the sites you want to look at. By replacing your default server with their own, hackers can redirect your requests to fake sites. So, when you go to visit your bank's website, the hackers could potentially redirect you to a malicious lookalike site that's actually stealing your login information.