Also known as DNS spoofing, in these types of attacks, the DNS servers are made to return an incorrect resource address, thereby diverting traffic to the attacker's computer
Distributed Denial of Service attacks are primarily disruptive in nature and aim at slowing the response of the website until the service becomes unavailable
Man In The Middle
The DNSSEC (Domain Name System Security Extensions) is a set of specifications which provide data integrity and origin authentication of DNS data to DNS servers.
Despite being an important component in the network infrastructure, DNS security is an aspect quite often overlooked. It is always strongly recommended that your infrastructure should comply with DNS security guidelines, failing which your servers can be under a host of attacks. The most common attacks on DNS servers include cache poisoning, phone call redirects, man in the middle, email rerouting, denial of service and others.
The primary concerns for the vulnerability of DNS date back to the initial stages of its development. It was designed when the internet used to be a much closed community used mostly by government organizations and universities. It was the default assumption that the requests coming then were genuine and legitimate. It is integral to discuss some of the above threats in order to develop a greater understanding about them.