DNS is one of the fastest growing attack vectors because it’s essential for network connectivity, and current security solutions are not designed to protect it. Distributed denial of service (DDoS) attacks and other external and internal DNS-based threats can flood your DNS server with malicious requests, bringing down your network. These attacks can redirect users to harmful Internet destinations, exfiltrate data, and expose your customers and business to additional risks. Security technologies such as next-gen firewalls, IPS, and generic DDoS solutions do not understand DNS and are unable to prevent specific attacks such as DNS cache poisoning, DNS hijacking, reflection attacks, amplification attacks, and many others.
Here is a webinar from EdgeTeam Technology and Infoblox discussing these topics.