A secure democratic Net is a fundamental right

"The malware installs a legitimate driver, NDISProt which allows it to send and receive raw Ethernet frames. Once the driver is installed, the malware "simulates" a DHCP server. It starts monitoring network traffic and when it sees a DHCP discover packet it replies with its own DHCP Offer packet. As you can guess, the offered DHCP lease will contain malicious DNS servers source" source

This means that the DHCP server on the wireless router that is being used by many ISP's has to be hardencoded if you want to be sure that it won't be affected. And even worse, as DHCP is used for many other networkconnected machines (MP3, camera's, DigitalTV, sensors,....) they could also be infected. Just a thought, what would happen if a series of sensors that are guarding an electricity grid becomes infected ? Just a thought....

Here’s a scenario:

• Jill is using the free WiFi access point at her favorite coffee shop from her infected Windows laptop.
• Steve sits down at the next able and fires up his laptop, which requests an IP address over the wireless local area network.
• Jill’s PC injects a DHCP offer command to instruct Steve’s computer to route all DNS requests through a rogue DNS server.
• Steve fires up his web browser and navigates to his favorite social networking site, but while the browser displays the correct URL name, the rogue DNS server has actually directed the browser to another site.

The same applies to any local area network (LAN) where multiple system connect via DHCP.