DNSSEC has been around for many years now (first IETF standards in 1997) but only small number of domain owners have implemented. DNSSEC fixes authenticity and integrity of DNS lookups by answering lookup request with an encrypted record. This digital signing makes it more likely that the authoritative DNS server is genuine and not compromised/intercepted/spoofed.
In the context of increasing reports of malicious activity targeting the DNS infrastructure, ICANN is calling for full deployment of the Domain Name System Security Extensions (DNSSEC) across all unsecured domain names.
Attacks on DNS registrars to compromise accounts and takeover domain names are continuing. The current attribution generally points to state political actors from Iran and North Korea primarily with some Chinese as well. While DNSSEC can prevent spoofing and hijacking it cannot address account takeovers since the encryption can be reset. So far, attackers have had poor process and failed to update DNSSEC and thus it offers some protection.
ICANN Calls for Full DNSSEC Deployment, Promotes Community Collaboration to Protect the Internet – ICANN : https://www.icann.org/news/announcement-2019-02-22-en