Over the years, DNS has been a target by cybercriminals not only for distributed denial of service (DDoS) attacks, but also phishing. Phishing, if successful, can be used as a launch pad for more complex methods like ransomware and business email compromise (BEC). Organizations should include DNS in their overall security strategy. It’s key to assess all aspects surrounding DNS: providers, assets linked to DNS, and security layers.