image15_edited_edited.jpg

DNS Hijack

image90.png

The Domain Name System

A form of hijack that gained popularity in recent years involves DNS (Domain Name System), the "internet phonebook". Most internet services rely on DNS for accessing services using a meaningful name such as www.bgprotect.com instead of an IP address like 192.168.43.13.

DNS Poisoning

DNS poisoning attacks, also known as DNS spoofing attacks, are a form of hijack targeted at DNS. In a DNS poisoning attack, the attacker changes the information returned by one or more DNS servers, which is akin to having a phone book display the attacker's phone number next to the victim's name. Attacks on this critical internet infrastructure can cause sensitive information to be sent to the wrong address, right into an attacker’s hands.

 

DNS poisoning attacks have been gaining popularity with a wide range of malicious actors, including sophisticated nation-states. These attacks are powerful and can be tricky to catch since the compromised DNS servers can be halfway around the world in a separate network, affecting only the users of that network.

BGProtect

BGProtect is the only company offering truly global active DNS monitoring, capable of detecting any change to your DNS records anywhere in the world. Our monitoring is tailored to your needs and budget and optionally includes consulting, 24/7 incident response and management, and threat intelligence services for more peace of mind.