Expert Commentary: Organizations Under Increasing Threat from DNS Attacks

Notify of
1 Expert Comment
Oldest Most Voted
Inline Feedbacks
View all comments
Martin Jartelius
Martin Jartelius , CSO
InfoSec Expert
October 26, 2021 2:19 pm

<p>The problem here is that “DNS Attacks” are so extremely vaguely defined, and other terms are also used rather carelessly. Looking to for example organizations that have been subjected to an attack with malware or phishing, the numbers are not close to 100% which they would if they represented who had actually been attacked, those responding here must have been subjected to successful attacks.</p><p>DNS Attacks” then include DNS amplification attacks, a method used for abuse on other DNS servers to target an organization in a DDOS attack – this is a DDOS attack based on DNS and not related to any of the scenarios described in the text. In all essence, secure changes to your DNS. Ensure you have a rock-solid infrastructure for it. Ensure to track your domains and sunset them with care if you discontinue something. But note that grouping all those attacks as “DNS attacks” is deceptive and the treatments for the different risks spread, similarly for the narrative and creation of big numbers, terms such as “Network attacks” could carelessly be used and would hence group even more attacks under the same umbrella.</p>

Last edited 1 year ago by Martin Jartelius
Would love your thoughts, please comment.x