🔥 3-day streak
ISC2 CISSP — Certified Information Systems Security Professional48 / 129
Question 48 of 129

A financial services company discovers that some internal users were silently redirected to a fraudulent banking portal even though they typed the correct domain name. Investigation shows an attacker injected forged responses into the organization's recursive DNS resolver, causing it to store an incorrect IP-to-hostname mapping for a legitimate domain. Which control would most directly prevent this class of attack going forward?

Reviewed for accuracy · Report an issueNext question