DNS hijacking manipulates the transaction and makes users unaware of the servers that they are using during an internet session. It is a malicious exploit where the users are redirected with the help of a rogue DNS server that changes the IPS address of the redirected internet user. DNS Hijacking, also named DNS redirection, is a type of attack where the users are unknowingly redirected to malicious sites. The attackers execute the DNS attack by either installing malware on the user computer or hack DNS communication.
“DNS hijacking involves changes to a domain name server (DNS), which translates human-readable domain names into IP addresses. As the name implies, the “hijacking” means a user is directed to a different end server.” Techopedia |
What is DNS?
DNS is a protocol that runs on various servers, and a DNS server returns a website’s IP address on receipt of a connection request from your device. It enables connection among the web-connected devices to communicate with websites.
How DNS works?
Type a website address in the URL bar. For example, www.amazon.com.
The device will send a query to the DNS server for amazon.com’s IP address.
The DNS server informs the IP address.
Your device records the IP address given by the DNS server and connects to amazon’s website.
The most interesting part is that everything happens in the background without your knowledge.
Watch this video to understand how DNS Name Server works:..