Friday, July 23, 2021

CISOs Preparing for DNS Attacks

Must Read

Adobe security update squashes critical vulnerabilities in Lightroom, Prelude

Adobe's final key patch around 2020 has coped with random code and JavaScript implementation bugs. Adobe's past scheduled security update...

NetWire and Remcos Trojan targeted US taxpayers

Investigators have analyzed an effective campaign targeted by US taxpayers to distribute both NetWire and Remcos Trojans. The tax season...

U.S DOJ charges 4 Chinese nationals for the global hacking campaign

The Justice Department announced charges against four Chinese nationals on Monday, accusing the men of being part of a...

Only over three-quarters of cybersecurity professionals also have stated they expect to observe a rise in DNS-related security dangers during the upcoming few weeks.

However, 29 percent have bookings around their capacity to react to DNS attacks, probably attributed to the changing and complicated DNS hazard landscape, as a few users confessed to having been struck by a minimum of one DNS assault in the last year, such as DNS spoofing/cache poisoning (28 percent ), DNS tunneling (16 percent ) and zombie domain strikes (15 percent ).

“After success, DNS strikes can have harmful repercussions to an organization’s online presence, reputation, and brand.

A domain hijacking assault, as an instance, could lead to hackers taking charge of an organization’s domain name and using it to host malware or even launching phishing campaigns that prevent spam blockers and other reputational protections.

In a worst-case scenario, this kind of attack may even result in an organization losing its domain name “

Jack Mannino, CEO in nVisium, flagged the danger of DNS tunneling as becoming a favorite exfiltration technique” since DNS is often reserved for egress traffic”

Mannino stated: “Recognizing your DNS traffic and using visibility into strikes is essential because most control and command techniques utilize DNS for this function, and attackers may exfiltrate data within the protocol via attacks such as SQL injection also, evading firewalls and filtering appliances”

Throughout September and October 2020, DDoS (22 percent ) was rated as the best concern for safety specialists, followed by method compromise (19 percent ) and ransomware (17 percent ).

In this age, organizations have concentrated most on boosting their capacity to react to the seller or client impersonation (58 percent ), targeted hacking (54 percent ), and IP address hacking (52 percent ).

Joffe said it had been convinced that associations know about the harshness of DNS attacks, but additionally, it is significant that they continue to take proactive actions to safeguard themselves and their clients against different dangers.

“This should involve routine DNS audits and continuous monitoring to ensure a comprehensive comprehension of all DNS traffic and action,” he explained.

“Crucially, DNS information may also provide organizations with timely, qualitative and significant danger insights, allowing them to not just shield against DNS-related dangers, but also mitigate the great majority of malware, viruses, and questionable content before crucial processes are “

Priyanshu Vijayvargiya
Founder and Editor-in-Chief of 'Virtualattacks Inc' Priyanshu Vijayvargiya is a cybersecurity analyst, Information Security professional, developer, and a white hat hacker.


Please enter your comment!
Please enter your name here

Latest News

OAIC: Uber found to have interfered with the privacy of over 1.2 million Australians

The Office of the Australian Information Commissioner (OAIC) has determined that Uber Technologies, Inc. and Uber B.V. have interfered...

Over 80 US Municipalities data are exposed due to Misconfigured Amazon S3

A team of Cybersecurity researchers at Wizcase found major data exposure of Over 80 US Municipalities due to the Misconfigured Amazon S3 Bucket. This happened...

Formbook malware Upgraded as an XLoader malware to Attack macOS Systems

Researchers have spotted an upgraded malware variant of Formbook malware which is now Upgraded as an XLoader malware to Attack macOS Systems. Cybersecurity researchers on...

Millions of HP, Samsung, Xerox Printers are Vulnerable to 16 year old bug

A 16-year-old security vulnerability affects Millions of HP, Samsung, Xerox Printers Driver allows attackers to gain admin rights on systems using the vulnerable driver...

MosaicLoader malware targets cracked software via SEO poisoning

New MosaicLoader malware targets users that are searching to download cracked software. Cybercriminals run ad campaigns in search engine results to boost their malicious...

More Articles Like This