Hi malware fighters,
Seeking to make money from mistyped website names, some of the United States' largest ISPs instead created a massive security hole that allowed hackers to use web addresses owned by eBay, PayPal, Google and Yahoo, and virtually any other large site.
The vulnerability was a dream scenario for phishers and cyber attackers looking for convincing platforms to distribute fake websites or malicious code:
http://blog.wired.com/27bstroke6/2008/04/isps-error-page.htmlContrary to what the G-Man might say, it is not, in fact, just like old times anymore.
For earthlink users:
If you have a need to stay clear of our dead domain handling, just point your DNS servers to:
207.69.188.171 (west coast)
207.69.188.172 (east coast)
If you're west of the Mississippi, use the west coast DNS server as your primary and the east coast as secondary. And vice-versa for those of you in the eastern U.S.
This is a self-service solution, and it creates a mechanism for those users who choose to opt out to do so,
polonus
