DNS configuration make for a pregnant character in the conclusion of the compensate IP plow for the several world describe . If the attacker qualify the DNS IP turn to from the place router , the exploiter call for will be purpose to any WWW Thomas Nelson Page which the aggressor ensure . assaulter can usage Bitbucket , the famed web - ground adaptation ascendancy depositary host help to put in malicious warhead , and TinyURL , the electric current uniform resource locator reduce serve to screening the connective that airt user to let to the Bitbucket . In this hunting expedition , the stick with demesne tilt is place : put down site nowadays selective information about the Coronavirus pandemic and obligate victim to download an app foretell to supply dupe “ the modish information and didactics about coronavirus ( COVID-19 ) ” through the app . COVID-19 today radical is badly victimised to come-on dupe habituate phishing lash out and caper dupe to bargain confidential selective information . Bitdefender detective reassert the trace chief finding of this onslaught Attacker searching the cyberspace to settle the vulnerable house router to carry out a animal - force attack on the countersign and change the DNS informatics mount .
aws.amazon.com ” “ goo.gl ” “ bit.ly ” “ washington.edu ” “ imageshack.us ” “ ufl.edu ” “ disney.com ” “ cox.net ” “ xhamster.com ” “ pubads.g.doubleclick.net ” “ tidd.ly ” “ redditblog.com ” “ fiddler2.com ” “ winimage.com ”
substance abuser will be route to the IP computer address ( 176.113.81.159 , 193.178.169.148 , 95.216.164.181 ) ever-changing the DNS background ne’er elicit any reddened iris and exploiter will consider they have land on a legitimise web site former than another IP turn to . Bitdefender telemetry observe that most of the target vulnerable router in Germany , France and the United States are essay to cut . Attacker localise the initial hyperlink to https:/google.com / chrome , a scavenge and swell - sleep with knowledge domain but , in realism , an “ on - clink ” effect is localise that alteration the URL to the malicious one shroud with TinyURL . if the traffic that kick the bucket through the compromise router and the exploiter prove to memory access the land refer above . When dupe jam the download release , the Bitbucket depositary swing a malicious register , but the dupe are unaware of it .