Expert Commentary: Organizations Under Increasing Threat from DNS Attacks

Experts Comments

October 26, 2021
Martin Jartelius
CSO
Outpost24

The problem here is that “DNS Attacks” are so extremely vaguely defined, and other terms are also used rather carelessly. Looking to for example organizations that have been subjected to an attack with malware or phishing, the numbers are not close to 100% which they would if they represented who had actually been attacked, those responding here must have been subjected to successful attacks.

DNS Attacks” then include DNS amplification attacks, a method used for abuse on other DNS servers to

.....Read More

The problem here is that “DNS Attacks” are so extremely vaguely defined, and other terms are also used rather carelessly. Looking to for example organizations that have been subjected to an attack with malware or phishing, the numbers are not close to 100% which they would if they represented who had actually been attacked, those responding here must have been subjected to successful attacks.

DNS Attacks” then include DNS amplification attacks, a method used for abuse on other DNS servers to target an organization in a DDOS attack – this is a DDOS attack based on DNS and not related to any of the scenarios described in the text. In all essence, secure changes to your DNS. Ensure you have a rock-solid infrastructure for it. Ensure to track your domains and sunset them with care if you discontinue something. But note that grouping all those attacks as “DNS attacks” is deceptive and the treatments for the different risks spread, similarly for the narrative and creation of big numbers, terms such as “Network attacks” could carelessly be used and would hence group even more attacks under the same umbrella.

  Read Less
What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.