According to new investigation, cyber-attacks working with DNS channels to steal knowledge, DDoS victims, and deploy malware have developed in quantity and charge all over the pandemic.
EfficientIP’s 2021 Worldwide DNS Danger Report was compiled by IDC from interviews with 1,114 organizations throughout the world about their encounters of final yr.
It observed that 87% of organizations experienced one particular or additional DNS attack in 2020, up 8 percentage details from 2019. On typical, victims were being hit 7.6 times at the price tag of $950,000 for each attack.
The most widespread types of attack were DNS phishing (49%), DNS-based mostly malware (38%), DDoS (29%), DNS hijacking (27%), DNS tunnelling for command and handle (24%), zero-working day bugs (23%) and cloud misconfiguration abuse (23%).
Phishing appears to have been particularly preferred because of to the significant range of likely at-risk distant workers.
These attacks often led to cloud assistance and in-house app downtime, compromised internet sites, brand name damage, misplaced enterprise and delicate information theft, the report claimed.
Danger actors often use DNS as it is usually on, with targeted visitors whitelisted by most firewalls. That opens up chances to conceal malware or stolen knowledge in DNS channels, amongst other points.
Nevertheless, given its ubiquity, DNS can also play an critical purpose in securing corporations — specifically shielding distant workers and info and software site visitors, EfficientIP reported.
50 % of those surveyed mentioned they use DNS targeted traffic investigation to detect compromised devices, and a quarter 27% send DNS targeted visitors logs to SIEM platforms for assessment.
“While it is beneficial that corporations want to use DNS to secure their progressively distant workforces, companies are continuing to endure the high-priced impacts of DNS attacks,” claimed Romain Fouchereau, exploration supervisor for European security at IDC.
“As threat actors look for to diversify their toolkits, corporations have to proceed to be knowledgeable of the wide variety of threats posed, ensuring DNS security is a crucial priority to protecting against these.”
Some sections of this post are sourced from: