Prevent Domain Hijacking
Learn how to prevent domain hijacking.
Discuss in our Forum Discuss in SlackThis section provides information on how to prevent domain hijacking.
Domain Name Server (DNS) hijacking is a type of DNS attack in which bad actors search for subdomains that are unused but pointed to an existing service. Attackers will then sign up for those services and use those subdomains to host malicious sites.
How to Avoid DNS Hijacking
Clear DNS Records Before Removing Unused Subdomains
When removing unused sites, delete the corresponding A or CNAME records with your DNS provider.
Don't Use Wildcard DNS Configuration
Using wildcard DNS settings is not considered best practice on a cloud-hosted platform such as Pantheon.
Secure the DNS Configuration
Take advantage of the security features offered by your DNS Manager to ensure that bad actors can't access your subdomains.
Practice Good DNS Hygiene
For example, regularly audit your DNS records and periodically make sure that you're still in control of everything your subdomains point to.
What To Do If You've Been Hijacked
Open a chat or ticket to report a subdomain takeover attack. If you do not have access to Pantheon support, you may email abuse@pantheon.io