Hackers and Malware Abuse DNS Services
DNS-based malware is particularly dangerous because it is often used to steal critical company and customer data, interrupt business continuity and damage brand reputation. Hackers take advantage of the underestimation of DNS services’ key role in the cyber kill chain while 91% of malware are using DNS services to build attacks. A global 2016 DNS Security survey conducted by EfficientIP shows that 84% of respondents said they had been targeted by a DNS attack in the last 12 months (an increase of 12% from 2015). When questioned on damages, more than 20% of respondents had intellectual property or sensitive customer information stolen. Traditional security systems are not enough to mitigate this type of threat, which could be easily circumvented.
DNS Firewall from EfficientIP is a purpose-built and complementary solution to traditional security systems, to effectively protect against DNS-based malware and advanced persistent threats (APT).
Ensure Proactive and Efficient Protection Against DNS-Based Malware
The SOLIDserver™ DNS Firewall solution, based on RPZ (Response Policy Zone), offers a dedicated layer of defense to monitor and analyze DNS traffic, protecting users and infrastructures against DNS-based malware.
DNS Firewall prevents connected devices from becoming infected with malware and blocks their activity by enabling recursive DNS servers to stop or redirect queries from clients that want to access domains and/or IPs known to be malicious. Compromised devices can be identified and located on the network for rapid neutralization.
The SOLIDserver appliance offers advanced management based upon RPZ dynamic reputation data feed and manual configuration,ensuring an up to date list of malicious or forbidden IP addresses, domains, URLs, or name servers. The entire DNS architecture is automatically updated regardless of the server type (Microsoft, Linux, or EfficientIP’s secure DNS appliance).
DNS Firewall Key Benefits
Thwarts initial infection and phishing
Adapt To Evolving Threat Landscape
Detects and blocks malware communication with C&C server
Proactively Prevent New Attacks
Proactively prevents new attacks, data exfiltration or DDoS attacks
Identifies and locates infected devices on your network, contains malware spreading