Domain Name System (DNS) is such a foundational function in Windows it is too often taken for granted. Think about ways to protect your firm’s DNS traffic both in terms of how attackers can impact your custom domain settings as well as protecting your workstations and providing more privacy.
For example, I recently wanted to change a DNS setting in a network that I was managing. Since I hadn’t logged into the hosting company’s DNS manager for a long time, I couldn’t remember the password, nor where to log in to manage the settings. The account was so old that the password was set by the hosting company.
Make it harder to fraudulently hijack DNS settings
This got me thinking about how easy it is to change DNS settings merely by logging into the hosting console. Hosting companies now require additional processes and procedures to confirm ownership of a domain, but DNS records have been changed merely with a phone call to a hosting company. DNS hijacking is not unusual nor unique.