This gave me a damn heart attack as I have an app using the Dropbox SDK that was being pushed through. Article author is behind the times.

I voice regret of actually using AT&T.

Now, I'm thinking about the order of DNS requests.. Local Hosts -> Router -> ISP/OpenDNS/etc -> On out to the Root Servers. Now wouldn't make DNS caching make this attack only partially effective really...if it even worked?

The point is to be heard, not to destroy anything in particular. They're just trying to get attention.