Redirection vs DNS spoofing attack
Redirection is achieved by spoofing DNS. For example, attackers can compromise a DNS server, allowing them to “spoof” legitimate websites and redirect users to malicious websites.
DNS spoofing is another way without using DNS hijacking (physically taking over DNS settings). DNS servers, routers, and PCs save DNS records. Attackers can “poison” the DNS cache by inserting a forged DNS entry with another IP address for the same domain name. The DNS server resolves the domain to the spoofed website until the cache is refreshed.
What is DNS Hijacking?
DNS hijacking mostly occurs when DNS requests are incorrectly resolved, and redirect users to malicious websites. It is also known as DNS redirection. This happens when a hacker controls a DNS server and redirects traffic to a fake DNS server. The server then transforms a legitimate IP address into that of a fake malicious website.