DNS Hijacking

What Does DNS Hijacking Mean?

DNS hijacking is a malicious exploit in which a hacker or other party redirects users through the use of a rogue DNS server or other strategy that changes the IP address to which an Internet user is redirected. DNS hijacking can leave users unaware of where they are going in terms of using specific servers during an Internet session.


Techopedia Explains DNS Hijacking

DNS hijacking involves changes to a domain name server (DNS), which translates human readable domain names into IP addresses. As the name implies, the "hijacking" means a user is directed to a different end server.

At its worst, this can lead to various fraudulent practices like phishing or data scraping, where data is collected in dishonest ways. A "softer" version of DNS hijacking is where an ISP will redirect a user to another page to generate ad revenue. For example, when typing in a bad URL, instead of getting a DNS error, the user might go to the ISP search page where the ISP is actually getting paid for sending the traffic.


Related Terms

Latest Cybersecurity Terms

Related Reading

Margaret Rouse

Margaret Rouse is an award-winning technical writer and teacher known for her ability to explain complex technical subjects to a non-technical, business audience. Over the past twenty years her explanations have appeared on TechTarget websites and she's been cited as an authority in articles by the New York Times, Time Magazine, USA Today, ZDNet, PC Magazine and Discovery Magazine.Margaret's idea of a fun day is helping IT and business professionals learn to speak each other’s highly specialized languages. If you have a suggestion for a new definition or how to improve a technical explanation, please email Margaret or contact her…