An attack on a Domain Name Service server in which a Web site address is substituted for a genuine address. The first address usually mimics an existing Web site such as that associated with a bank. When a browser tries to access the genuine site it is sent to the fake site, which might then try to extract confidential information from the user of the browser.