According to the SANS Internet Storm Center, there have been reports of continuing attacks related to Microsoft server software and Domain Name System (DNS) cache systems, resulting in users being routed to sites run by attackers.

Also called “cache poisoning,” the attacks differ from more common phishing or pharming attacks because they do not rely on spyware installation or users clicking on bogus links.

Instead, attackers put false information into the DNS caches of servers that have been compromised. The servers then route users away from legitimate sites.

However, these attacks also can lead to traditional phishing methods, putting Internet users at risk for a kind of one-two identity-theft punch.

At least three attacks using DNS cache poisoning have been reported since early March, according to the Internet Storm Center.

Two attacks drove users to adware installation sites, and the other routed users to a site purporting to sell herbal supplements.

Approximately 500 to 1,000 companies have been affected by these attacks, the Center estimates.

Source: News Factor Network (via Yahoo)