London IP addresses create zombie router network
Two Internet Protocol (IP) addresses in London have been responsible for infecting more than a quarter of a million routers around the world.
Security researchers from specialist internet security consulting firm Team Cymru have found an exploit that has already switched 300,000 router domain name system (DNS) servers, which could in turn be used to redirect web traffic.
There are a lot of unanswered questions, though. Why is the culprit doing it? Why has it gone undetected for so long? And who is behind the mysterious 3NT Solutions, the hosting company that registered the two DNS servers? But perhaps strangest of all, given that as yet there is no evidence that the DNS servers are doing anything differently than normal ones, what are they for and what are they doing?