Observing on the forum a lot of diverse topics dedicated to security on the client side I'll try to combine the main points in a separate topic.
In the first post, we'll look at DNS security on the client side. So. Go!
Some viruses change the TCP / IP protocol setting in Windows OS by adding an incorrect DNS
What is this for?
To ensure that an unsuspecting user typing (correctly typing) the required site name in the address bar of the browser hit the fake resource and left its own data there.
An example is considered for the Windows operating system and a typical home (office) binder router-computer
Recommendations:We are looking at the properties of the TCP / IP connection, in the DNS properties it should be automatically set to google or google (8.8.8.8, 8.8.4.4) also check in the additional DNS tab whether there is anything else written there
if there is an unknown crap - put the setting on the machine, if in this case the Internet stops working, then we register the Google DNS 8.8.8.8, 8.8.4.4
Another way to find out if we were on a phishing site:For the following manipulations, we need to know the IP addresses of the original site
For Windows - Start, execute, enter the command
CMD, the command line will open. At the command prompt, enter
nslookup and the name of the site we want to check
nslookup binance.com example
look at the result of the command, the command gives out the IP addresses of the server that we check
compare them with the original. Coincidentally - the site is original and the one that we need. It did not coincide - first of all we look at the settings of the DNS system as I described at the beginning of the post, the second setting of the router (if there are any questionable DNS servers) and if everything is alright - read the news for a DNS attack or for adding another range IP to this (checked) service.
P.S. if some IP address caused your suspicions go to the link
https://www.nic.ru/whois/ drive the IP we need and look at it information
Additionally, I recommend that you familiarize yourself with the comrade's post
DarkNightRider about DNS security of your router
https://bitcointalk.org/index.php?topic=2944516.0
This topic is an English adaptation. Russian original by l_w: https://bitcointalk.org/index.php?topic=2945637.0
Thank you for attention!