A type of DDoS attack in which a cybercriminal uses DNS servers to increase the amount of data transmitted to the target device. The attacker sends a relatively small look-up request to a vulnerable DNS host, substituting the victim computer’s IP address as the source. The server responds to calls with a much larger packet, but as a result of the IP spoofing transmits it to the target system. The DDoS attack is thus amplified through the generation of a large amount of junk traffic.