DNS and BIND, 4th Edition: DNS Security
Kashpureff hadn't made any attempt to disguise what he had done; the web site that users reached was plainly the AlterNIC's, not the InterNIC's. But imagine someone poisoning your name server's cache to direct https://www.amazon.com/ or https://www.wellsfargo.com/ to his own web server, conveniently well outside local law enforcement jurisdiction. Further, imagine your users typing in their credit card numbers and expiration dates. Now you get the idea.
The link for this article located at UnixReview is no longer available.