Computer attack taking advantage of a software vulnerability to make unauthorized modifications to the domain name server (DNS), thus changing the legitimate IP address of an entity, to direct victims to a fake website instead of the expected website.

It is mainly used for banking institutions, to automatically redirect users to a fake website and illegally obtain their access keys.