Across the country, organizations are reporting that network devices were compromised and had their DNS settings changed to join the existing DNS attack. In those cases, when employees of the affected companies tried to open any website they were requested to execute a malicious Java applet, which would install malware presented as "Google Defence" software that tells the user is required to use the search engine, but instead is a trojan.
"These are typically not "classic" cache-poisoning attacks done with botnets in a Kaminsky-style attack," said one security expert.
While the DNS attacks rampaged, Brazil’s Federal Police arrested a 27-year-old who was an employee of a medium-sized ISP in the southern part of the country.
Link to Original Source