The Domain Name System (DNS) has long been a favored target for threat actors looking to disrupt victims. Whether criminals are looking to use DNS to misdirect traffic in order to steal information, gain access, or launch attacks that deny access to a victim’s resources, it is a critical link that can become a huge vulnerability.
DNS servers and services need to be protected in two different dimensions. First, DNS must be protected so that it continues to resolve names consistently and correctly for the organization it serves. Next, it must be protected so that it can’t be used as a weapon against other organizations and individuals.
Read a list of protective steps organizations can take to protect DNS servers and services on DarkReading.