Which statement best describes a DNS attack?

• A. A Flood Attack on DNS Servers with Excessive Queries to Disrupt Resolution.
• B. A Type of Attack That Involves Maliciously Gaining Control of a Domain Name, Targeting the Stability and Reliability of the Network's DNS or Using It as a Mechanism for Further Attacks.
• C. An Attack That Redirects All DNS Queries to Malicious IPs via Cache Poisoning.
• D. An Attack That Blocks DNS Resolution by Exhausting Cache.

Answer: (B)

Gaining control of a domain name and manipulating its DNS records directly undermines how the DNS functions. By taking ownership of the domain’s authoritative DNS settings, an attacker effectively becomes the trusted source that maps domain names to IP addresses. This allows redirecting legitimate traffic to malicious servers, enabling impersonation, data interception, or service disruption. Because DNS trust is built on who controls those records, domain hijacking can facilitate broader attacks and undermine user and service reliability far beyond a single DNS query.

This broader concept sits above more specific techniques like flooding DNS servers with queries, poisoning cached DNS data, or exhausting DNS caches. Those are real attack methods, but they describe particular ways to disrupt or manipulate DNS behavior. The statement about maliciously gaining domain control captures the central asset an attacker targets and how that control can ripple into multiple harmful outcomes, making it the best description of a DNS attack in this context.