When I first saw this story it read like fiction, or a movie synopsis, because of the way that the exact details are not being revealed yet, albeit quite understandably.

The flaw exploits the internet’s address mechanism, known as the Domain Name System (DNS). This maps the names we associate with websites to the true numerical addresses of their internet servers, in the same way that a mobile phone’s address book associates names with telephone numbers. DNS allows people to visit websites simply by typing in words - such as guardian.co.uk or google.com - rather than entering a string of unmemorable numbers. The glitch allows hackers to inject themselves into the process, intercepting the name entered by the user and mapping it to a different internet address than the one intended. This would potentially allow criminals to redirect web users to phishing websites even if they had entered the correct address in the first place.