Let’s face it: Cybersecurity is getting complicated and increasingly expensive.

The statistics are staggering:

  • In 2020, cybercrime losses totaled $1 trillion worldwide (TechRadar, 2021)
  • 94% of malware is spread through email (CSO, 2020)
  • 74% of the malware spread amongst a company is sent from one coworker to another (Comparitech, 2021)
  • 20% of all employees of an organization will click on a phishing email link and 67% of those employees will enter their information onto phishing websites (Terranova Security, 2020)
  • The average downtime a company experiences after a ransomware attack is one month (Coverware, 2021)
  • Google data revealed a 350% surge in phishing websites during the pandemic (Forbes, 2020)

Plain and simple, companies today need to rely on experts to address cybersecurity holistically. One commonly overlooked in a business’s cybersecurity plan is DNS-layer security.

What is DNS?

According to Cisco, “The Domain Name System (DNS) allows users and computers to connect to websites, perform software updates, and use many of the applications organizations rely on.” People use DNS resolutions thousands of times a day to connect to the websites they are trying to get to. In short, DNS forms the foundation of the internet.

How is DNS compromised?

According to the Global Cyber Alliance:

  • 1 in 3 breaches could’ve been contained by DNS-layer security DNS-layer security would’ve saved billions of dollars in cybersecurity losses.
  • Most of today’s cyber attacks use DNS for delivery and “phone home” capabilities.

Malware, phishing, command & control requests, and cryptomining attacks all use DNS to deliver payloads and redirects internet traffic to malicious sites and servers where the bad actors of the world take control.

How does DNS-layer security work?

DNS-layer security works by constantly reviewing DNS data sources to uncover malicious domains, IPs, and URLs. Specific cloud DNS-layer services like Cisco Umbrella innovate and create advanced data modeling to provide better threat detection and classification. This allows for near-instantaneous data protection since their engineers are constantly compiling the latest malicious domains, IPs, and URLs. Additional capabilities include blocking compromises altogether by cutting off malware from establishing a connection with the internet. Lastly, log files of DNS activity allow IT staff to investigate and expedite response time to incidents when they occur.

There is no silver bullet when it comes to cybersecurity and ensuring your business is safe. DNS-layer security is even a bit hard to wrap your head around, especially if you are not a cybersecurity specialist. All the more reason that businesses need to look towards partnering with a MSSP for ongoing support services and enhanced cybersecurity support.

Epsilon can help support your organization with a DNS-layer security plan.