Certified Ethical Hacker (CEH v11) — Question 1

Some clients of TPNQM SA were redirected to a malicious site when they tried to access the TPNQM main site. Bob, a system administrator at TPNQM SA, found that they were victims of DNS Cache Poisoning.
What should Bob recommend to deal with such a threat?

Answer options

• A. The use of security agents in clients' computers
• B. The use of DNSSEC
• C. The use of double-factor authentication
• D. Client awareness

Correct answer: B

Explanation

The correct answer is B, as DNSSEC adds a layer of security to DNS queries, preventing attackers from tampering with DNS responses, which is essential in this scenario. Options A, C, and D, while beneficial for overall security, do not directly address the problem of DNS Cache Poisoning.