What is a DNS Cache Poisoning?
DNS Cache Poisoning, (aka “DNS Spoofing”), is a cyber attack that exploits vulnerabilities in the domain name system (DNS) by diverting Internet traffic away from legitimate servers and towards fake ones.
DNS cache poisoning enables an attacker to pollute the data in DNS servers—including those managed by your company and your service provider—with bogus information that re-routes your traffic to the attacker’s sites by changing data in DNS to point to their IP address instead of yours. Once traffic is re-routed attacks can take many forms, most of which are extremely difficult to detect:
- An attacker may impersonate your Web presence and collect private data from your customers, partners and employees.
- Your email may be sent to an intermediary server where it is opened and even modified before reaching you or your intended recipient.
- Your anti-spam system can be fooled into allowing malicious email and blocking legitimate email.
- Your Web traffic may be sent to a site that looks like your intended destination (say, your bank’s Web site) but is operated by attackers, where they can collect your user name, accounts and passwords.
- An attacker can use the “Forgot Password” function on your Web site to retrieve your users’ passwords.
LEARN MORE ABOUT DNS Cache Poisoning AND RELATED TECHNOLOGIES
- DNS QuickSecure Solution – Solution Note
- Securing Your Business with DNS Servers That Protect Themselves – Solution Note
- Malware Containment and Control — Solution Note
FROM THE INFOBLOX COMMUNITY
Infoblox is leading the way to next-level DDI with its Secure Cloud-Managed Network Services. Infoblox brings next-level security, reliability, and automation to on-premises, cloud and hybrid networks, setting customers on a path to a single pane of glass for network management. The recognized industry leader, Infoblox has over 13,000 customers, including 375 of the Fortune 500.