This article covers all about DNS cache poisoning attack and how can you help prevent it. In fact, It is imperative that you stay vigilante to prevent such attacks, otherwise you might end up with your data at risk, leave your devices at the risk of malware infection or forced censorship, and even the attacker might halt your security update leaving you vulnerable to a plethora of other attacks.
How can I prevent DNS attacks ?
- Audit your DNS zones. First things first.
- Keep your DNS servers up-to-date.
- Hide BIND version.
- Restrict Zone Transfers.
- Disable DNS recursion to prevent DNS poisoning attacks.
- Use isolated DNS servers.
- Use a DDOS mitigation provider.
- Two-Factor Authentication.
What is difference between DNS spoofing and DNS poisoning?
DNS cache poisoning is the act of entering false information into a DNS cache, so that DNS queries return an incorrect response and users are directed to the wrong websites. DNS cache poisoning is also known as 'DNS spoofing'.