The Domain Name System (DNS) is a fundamental component of the internet infrastructure, translating domain names into IP addresses that other devices and websites use to communicate with them. DNS attacks target the stability and security of the DNS infrastructure, aiming to render it unavailable or intercept and alter the answers provided by the DNS, directing unsuspecting users to malicious websites. There are several types of DNS attacks, including spoofing, cache poisoning, DNS flooding, NXDomain, amplification, hijacking, rebinding, tunneling, phantom domain, and others. Each type of attack requires a different set of countermeasures to mitigate it, but generally, keeping the DNS server software up to date, using a dedicated DNS server, increasing the number of recursive DNS servers, and checking for vulnerabilities are effective measures to prevent DNS attacks. These attacks can be executed by threat actors who use techniques such as intercepting communications between devices and DNS servers, manipulating DNS response queries, infecting routers with malware, routing user traffic to attacker's servers, setting up phantom domain names, and others. To prevent these attacks, organizations should conduct regular DNS audits, blocklist suspicious domain names and servers, temporarily block client's IP address if it sends too many NXDomain requests, increase the Time to Live (TTL) on current DNS records, enforce source IP verifications on all network devices, prevent DNS authoritative name servers from functioning as recursive servers, enforce response rate limiting settings on all DNS servers, configure open DNS resolvers to only respond to queries from a trusted source, protect routers with strong passwords, keep the DNS server and all client operating systems and installed applications up to date, use advanced security solutions including next-generation firewalls, network detection and response (NDR), and monitor all interactions within IT environment.