Drive-by Pharming With Symantec, Markus and I have developed an attack called "Drive-by Pharming" to which many people with home broadband routers are vulnerable.

In short: visiting a web page can cause malicious JavaScript to execute, changing the DNS settings on your broadband router. As a result, you cannot trust domain name resolution on a compromised router. The Solution is to set a hard-to-guess administrator password for your router.

Link to my blog post
Link to Zully's Blog Post (Symantec)
Link to the Press Release  ¶ by Sid Stamm @ 9:53 AM    1 comments