DNS hijacking

Updated: 10/30/2017 by Computer Hope

DNS hijacking is a process in which an individual redirects queries to a domain name server (DNS). It may be accomplished through the use of malicious software or unauthorized modification of a server. Once the individual has control of the DNS, they can direct others who access it to a web page that looks the same, but contains extra content such as advertisements. They may also direct users to pages containing malware or a third-party search engine.

ISP hijacking

DNS hijacking is also done by some Internet service providers, such as Comcast, so that they can link users to their own search pages when they visit a web page that no longer exists. Many claim this is to improve the users experience; however, this can also be another great source of extra revenue since they control the site and get paid off any advertisement clicks. Currently, there are no laws against an ISP doing this to its users.

How do I know if my ISP is hijacking me?

If you visit any fake or non-existent site, e.g., http://www.jasdf2dfde3.com and it pulls up a search engine or a collection of links, your DNS is redirecting you.

How do I know if a page is non-existent?

Enter the same URL you're entering into your browser into our free isitup utility. If it displays an error, the site does not exist.

How can I opt out of my ISP DNS hijack?

Although all of the ISPs allow you to opt out of their DNS redirection, many use cookies to perform this function. What this means is that you'll still be redirected, but the cookie will let the website know you do not want to view the search results.

Alternative DNS addresses

OpenDNS

DNS1: 208.67.222.222
DNS2: 208.67.220.220

DNS, DNS record, Hijack, Network terms, Pharming, Search engine, Security terms