They've almost realized where to put the pressure. Almost. Once these kinds of attackers realize the real chokepoint of the modern web: certificate authorities for HTTPS certs, we're doomed. Everyone centralizes in the handful of companies and those companies decide every ~90 days which websites are visitable. Because browsers now come pre-configured to not allow visiting HTTP websites and people don't do HTTP+HTTPS anymore. Just HTTP-only.

The DNS resolver attacks are but pin pricks compared to the coming centralized control via CAs.