SlideShare une entreprise Scribd logo

Effecientip DNS security.pdf

N
neoalt

Effecient ip DNS security

Technologie
1  sur  18
Télécharger pour lire hors ligne
An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 1 An IDC InfoBrief, Sponsored by Author: Romain Fouchereau Research Manager European Security, IDC Securing Anywhere Networking IDC #EUR149048522 JUNE 2022 DNS Security for Business Continuity and Resilience 2022 Global DNS Threat Report
An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 2 Content Executive Summary 3 Threat Landscape 4 Impact of Attacks 5 State of Defenses 6 No Industry Is Immune — All Organizations Are at Risk 7 Enabling Zero-Trust Models with DNS 9 Securing the Extended Enterprise and the Hybrid Workforce 10 Actionable DNS Event Data for the Security Ecosystem 11 Continuity and Resilience of Cloud and Services 12 Data Privacy, Theft, and Compliance 13 Improving Detection and Monitoring of Shadow IT 14 Essential Guidance 15 About EfficientIP 16 Methodology 17
An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 3 Executive Summary DNS is a powerful tool to guarantee availability and integrity of the network, and a great instrument to detect and mitigate threats before they can propagate thanks to its full visibility over all network activity. DNS security is a key component of the overall security ecosystem of tools, products, and services. Hybrid work models and more reliance on cloud applications mean more attacks, and more attack types on infrastructures mean greater disruption. To respond and defend against these threats, organizations increasingly recognize the importance of DNS as part of their security strategies. With organizations adopting a “work from anywhere” approach, the 2022 DNS Security Survey shows that the frequency and damage cost of DNS attacks remain as high as ever, causing worrying impacts on service continuity and data confidentiality for on- premises, cloud, and remote workers. The good news is that the importance of DNS for overall network security is being more and more acknowledged, with companies understanding its value for strengthening resilience, protecting data privacy, and for providing an early security barrier by controlling access to critical apps and services. Jean-Yves Bisiaux CTO, EfficientIP 88% experienced one or more attack 70% suffered application downtime (cloud or in-house) $942k average cost of attack 51% were victim to a phishing attack 7 attacks on average per organization in the past 12 months 24% had data stolen as a result of an attack Awareness of DNS security is very strong: 73% say it is critical
An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 4 Threat Landscape New challenges related to hybrid workforces include the privacy of the data traffic of the remote workers. A dedicated DNS security solution will provide better control and security to protect applications, users, and data. DNS has been the Achilles’ heel of the network since its creation, making it a target of choice for cybercriminals to exploit weaknesses, gain access to the network, and exfiltrate data. This is why it is vital for organizations to deploy a proper DNS security solution to mitigate risks and increase network security: Hybrid work models have created new challenges for IT teams. With the disappearance of the perimeter, both attack surface and cloud usage have increased considerably. Survey results show that the number and size of attacks remain very high, and cybercriminals are using all available tools to gain access to networks, disrupt operations, and steal data by leveraging vulnerabilities and cloud misconfigurations. The size of the DDoS attacks remains very high: According to IDC research on the hybrid workforce: As digital enterprises adopt hybrid work models, IT teams need to enable secure access for all employees, but also drive improved productivity and better work experience and increase overall business agility and resilience. Security challenges: • Unsecure home networks • Targeted cyberattacks • Proliferation of shadow IT • IoT devices on home networks 45%believe remote and hybrid work models will be part of accepted work practices. 98%anticipate challenges in implementing hybrid work. 88%of organizations experienced an attack last year Hybrid Workforce Source: IDC Future Enterprise Resilience and Spending Survey (December 2021) 7 attacks per year on average for each organization Top DNS-based attacks: all types of attacks have increased DNS phishing: 51% vs 49% DDoS attacks: 30% vs 29% DNS-based malware: 43% vs 38% DNS hijacking/ credential attack: 28% vs 27% Cloud instance misconfiguration abuse: 27% vs 23% 2022 2021 DNS tunneling: 28% vs 24% Zero-day vulnerabilities: 26% vs 23% 52%of attacks were over 5Gb/s (54% last year).
An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 5 Impact of Attacks Because of the high costs and frequency of attacks, many companies will struggle to remain in business. Breaches not only directly affect an organization’s finances, but also its reputation, intellectual property, and customers. DNS-based attacks such as ransomware are becoming more pervasive, and cybercriminals are specifically targeting the hybrid workforce. No organization — of any size, in any industry — is safe. Average cost of attack*: 2022 $942,000 2021 $950,000 70% of organizations were hit by application downtime.** As a result of attacks, downtime — from in-house applications or cloud services — means employees, customers, and partners are not able to access anything for hours. This shows how important DNS is for resilience and to secure access between users and applications. *The cost includes cost of mitigation, full-time-equivalent (FTE) hours spent, and business damage **Consolidation of in-house app and cloud service downtime DNS attacks directly impact business outcomes, and the result can directly be measured on the business: DNS allow/deny filtering capabilities play a critical role in reducing the impact of DNS-based attacks — such as application downtime and other more long- term business losses — as they can stop malware from spreading at the time of infection. 2022 2021 Cloud service downtime (SaaS or public cloud) Loss of business In-house application downtime (private datacenter or private cloud) Brand damage Compromised website Sensitive customer information or intellectual property stolen 44% 32% 44% 31% 42% 24% 46% 30% 51% 27% 42% 26%
An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 6 State of Defenses To ensure business continuity and global resilience of all apps and services, it’s important to leverage DNS capabilities to mitigate DNS-based attacks with adaptive countermeasures. Awareness of the importance of DNS security remains high and a concern for most organizations: 73% say it is critical for their business. The survey shows that over 99% of companies do have some form of security for DNS in place, but 43% do not use a security solution built into a DNS server to benefit from the added advantages of these solutions, such as business continuity, data protection, and user protection. Although the situation is improving year by year, organizations are still taking inappropriate countermeasures when attacked, and this is having a negative impact on business continuity: Average time to mitigate increased to 6H 07M (+29 minutes) with 24% taking longer than 7 hours (was 23%). Digital transformation resulted in faster multicloud adoption, but this also translated into an overall increase in management complexity for the IT security teams, making mitigation even more time consuming and difficult. To ensure security of services during a DNS-based attack, 62% of organizations are still NOT using auto-remediation. DNS analytics can provide actionable information to improve security of the workforce and IoT deployments, strengthen resilience, and enhance user experience, but 25% of organizations still don’t collect or analyze their DNS traffic. Shut down the DNS server or service Disable applications Shut down part or all of the network infrastructure 38% 36% 25% 47% 38% 36% Business continuity 2022 2021
An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 7 No Industry Is Immune — All Organizations Are at Risk Most attacked (9.5 times) and for the highest value $1.3 million. Most targeted industry by ransomware (50%). Highest results in cloud service downtime as a result of attack (50%) and data stolen (31%). Most targeted by DDoS attacks (37%) and highest suffered loss of business (35%). Most likely to shut down the network infrastructure during an attack (29%); 53% were a victim of phishing attacks. Largest DDoS attacks; 12% suffered attacks over 50Gb/s; 64% do not have confidence in their shadow IT detection capability. FINANCE RETAIL TELCO HEALTHCARE EDUCATION
An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 8 No Industry Is Immune — All Organizations Are at Risk 39% suffered a ransomware attack; 39% shut down their DNS server or service (third highest). Longest to remediate attack: 7h 35m; 38% brand damage (highest) with risk of customers switching to another provider. Highest cloud instance misconfigurations (29%); 30% of organizations were victims of zero- day vulnerabilities (the highest in the survey). 50% of organizations have had their website compromised; highest in-app downtime (52%). Most likely to fall for phishing attacks (58%); 49% hit by cloud service downtime. GOVERNMENT UTILITIES MANUFACTURING TRANSPORTATION BUSINESS SERVICES
An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 9 Enabling Zero-Trust Models with DNS In zero-trust strategies, DNS security becomes another layer of the framework to increase and support application access control using deny/allow lists. Microsegmentation for intelligent control can be done at the DNS level to simplify deployment and management operations. Filtering access with allow/deny lists is essential for a successful zero-trust strategy. But management complexity is a major hurdle, especially when dealing with firewalls. IT security teams need simpler solutions: • DNS is simple to set up and acts early in the communication process. • For filtering access, DNS offers high reward for low effort. 66%of organizations have medium to low satisfaction with the management complexity and implementation cost of their security solution in terms of preventing the lateral propagation of threats. App access control: Zero trust is a key approach in security strategies, founded on least-privilege access principles and requiring control of which devices can access which apps and services. Building a cybersecurity program around zero-trust principles will generate security data that can be used to make decisions that can be fed back into each individual area of a security program through updated policies and adjustments, making each one more efficient and effective. Threat intelligence and DNS filtering: Threat information comes from data and telemetry generated by the DNS and from data based on internal network activity, such as alerts, logs, and traffic flow. Application access control: Network segmentation of user groups, mapped to allow/deny domain lists for DNS filtering of client queries, can reduce exposure risk by offering a security barrier controlling app access at the earliest point in flow. 74%make use of internal DNS traffic analysis vs 70% last year. 22%still use only third- party feeds. Threat intelligence: To improve application access control, 56% already use DNS. DNS domain deny and/or allow lists are valuable for 83% (vs 77% in 2021) to improve control over which users can access which apps. To manage DNS filtering lists: Maturity of zero trust: Zero-trust implementations have increased over the past year, with only 24% of organizations not yet exploring it.
An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 10 Securing the Extended Enterprise and the Hybrid Workforce Private DNS security can be leveraged to reduce management complexity, boost privacy, and extend the same on-premises policies to the extended enterprise: cloud, IoT, SD-WAN, remote workers, etc. Digital transformation and hybrid work models are changing the network with the adoption of new technologies, strategies, and delivery models. Security must also extend beyond the traditional enterprise perimeter to address new imperatives such as IoT, cloud, remote workforce, datacenter, SD-WAN, and 5G. The extended enterprise: As organizations better understand the risks and vulnerabilities their organizations face, they see the critical role of DNS in their overall security strategy for the extended enterprise. IoT deployments 51% vs 47% Cloud deployments 56% vs 52% Datacenter 48% To improve IoT security, the use of DNS for filtering access of IoT devices to specific apps is seen as important by 84% of organizations. DNS complements other IoT security products as it can control access from devices to specific parts of the network, apps, and services through allow and deny lists filtering. This will help identify and block any rogue device or botnet threats on the network and mitigate threats and reduce risk. DNS security for IoT protection DNS is critical in securing: 2022 2021 DNS security is seen as a strong asset for securing the hybrid workforce. Organizations say it is a critical component of their overall security: DNS security can also protect data and application traffic to ensure safe and secure online activities: Rather than relying on expensive, complicated, and unscalable VPN solutions, companies often use standard ISP/public DNS services, exposing themselves to privacy and data security vulnerabilities. Using private DNS will prevent snooping and keep data related to traffic within the organization. As well as offering more controlled privacy, private DNS also enforces security policies for all users and devices. 49%see private enterprise DNS solutions as useful for protecting apps and services while making them accessible for remote workers (in addition to VPN and firewall). This was 42% last year. 47%are considering setting up a private DNS system to limit the privacy risks of using DoH with a public provider (49% last year). 54%for the remote workforce 50%for the on-premises workforce
An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 11 Actionable DNS Event Data for the Security Ecosystem DNS security provides real-time insights into the full security ecosystem of products and services for enriched threat intelligence to help identify threat indicators, assess risk, and prevent future attacks. DNS will help enhance and secure the day-to-day function by adding relevant telemetry and analytics on top of software-defined networking and security tools. To successfully deliver their digital transformation strategies and focus on business outcomes, organizations must be aware that collaboration between networking and security teams is essential. From SD-WAN implementation to cloud migration or datacenter modernization, it is vital that network and security teams successfully work together: • Security teams need network data from DNS traffic (ideally already analyzed data as raw data is not relevant/efficient) to get visibility and to understand the infrastructure. • Networking teams need a security-by-design approach to their operations to function safely and to enhance collaboration between NetOps and SecOps. Secure automation requires comprehensive source of truth data on the configuration of a network and the state of that network: 75%of network teams share their DNS- DHCP-IPAM data with security teams (source: EMA 2021 NetSecOps Report). NetSecOps: Networking and Security Collaboration To protect data, apps, cloud services, and users — whether on premises or remote — DNS plays a key role in the security ecosystem due to its understanding of network traffic intent, ability to filter client access, and enhanced control over user privacy. A holistic approach can be achieved by sharing actionable data and security events. Monitoring DNS traffic can be a rich source of data for security operations center (SOC) teams as they monitor and analyze the security posture of the organization. DNS can help enforce security policies and automate security responses — and then feed pertinent security events into a SIEM and/or SOC (and reduce cost), as well as other components of the security ecosystem. DNS traffic analysis is the third most used tool to detect compromised devices (behind AV and FW logs). SOAR: rise in use of automation for network security policy management: 60% are using mostly automated solutions (57% last year). 23%of DNS traffic is sent to SIEM for analysis vs 27% last year.
An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 12 Continuity and Resilience of Cloud and Services Automation as part of the DNS solution in multicloud environments will enable automated provisioning and deprovisioning of IP resources and eliminate the risk of misconfigurations. Constant monitoring and management will ensure deployment is optimal for stronger DNS service continuity and resilience. On October 4, 2021, Facebook and its subsidiaries became globally unavailable for seven hours. The outage also prevented anyone trying to use “log in with Facebook” from accessing third-party sites and cut off all Facebook’s internal communications. The issue was identified as a border gateway protocol (BGP) withdrawal of the IP address prefixes in which Facebook’s DNS servers were hosted, making it impossible for users to resolve Facebook and related domain names and reach services. As a result, Facebook’s share price dropped 5% and the company lost at least $60 million in advertising revenue during that time. The importance of continuity and resilience: How Facebook completely disappeared from the internet DNS is critical for users to access their apps and services stored on premises or in the cloud; when DNS services are affected, users are unable to access their applications: no DNS means no business. The cloud-first approach has contributed to most organizations being directly impacted by cloud and application downtime when facing DNS attacks, from enterprises to service providers and even into the midmarket, and a DNS platform can help secure networks, applications, and data. Continuity requires smart management of app traffic. DNS can be used to intelligently steer app traffic to ensure app availability and improve user experience. With so much reliance on cloud, and the difficulty of managing multicloud, it is vital to ensure continuity and resilience of their cloud apps and services, but relying on the DNS service of the cloud providers is complex and requires constant monitoring and updates, often leading to DNS misconfigurations impacting continuity. DNS security provides analytic tools such as behavioral threat detection and adaptive countermeasures and disaster recovery features to safeguard DNS service. Maintaining DNS services resilience is vital for many enterprises because they rely on their online presence for their customers, partners, and employees. Malfunctioning or unavailable DNS services could lead to internet invisibility and impact business and reputation, resulting in a loss of revenue and brand damages. During DNS attacks organizations still reacted by shutting down: 44% were hit by cloud service downtime 44% were hit by in-house application downtime As result of a DNS-based attack: 56% view DNS as a critical component of their overall cloud strategy (up from 52% last year) and 48% for the datacenter. 27% suffered a DNS attack abusing cloud misconfiguration (up from 23% last year). 38% DNS services 36% Applications 25% Infrastructure
An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 13 Data Privacy, Theft, and Compliance Data theft Data privacy DNS tools can take cybersecurity privacy and compliance programs to the next level through constant and real-time traffic monitoring and analysis of all data for protection and privacy. DNS security checks will protect from data exfiltration and help organizations to achieve their compliance regulations (GDPR, CCPA, PIPEDA, PDPA, etc.). Ransomware has become a profitable industry, resulting in substantial ransom demands, major disruptions, and leaked or stolen data. DNS security is the top method for protection against malware and ransomware at 57%. As basic DNS is no longer adequate, recommendations to protect against ransomware include: • Investing in response policy zones (RPZs), threat intelligence, and log analysis • Using a high-performance dedicated DNS DNS can be used as a foundation tool for anti- ransomware programs. Rise of ransomware Accelerated digital transformation and the shift toward a hybrid work model requires organizations to rethink their data protection strategies and upscale their data security infrastructures for cloud environments. Traditional security solutions cannot detect exfiltration, so organizations can remain unaware of a data theft for a long time. Through real-time analysis of DNS transactions, organizations can detect signs of DNS tunneling and stop data theft quickly. Organizations therefore see it as their top solution for protecting their intellectual property and sensitive data. As they move to hybrid workforce models, most organizations are concerned about data privacy when using DNS from public providers. A private DNS will protect all DNS requests through encryption, preventing eavesdropping and keeping data safe from public providers that could use the information for their own analysis. 43%of organizations were victims of ransomware. 24%had sensitive customer information or IP stolen 72%consider using DoH with a public provider to be a main risk (74% last year). 49%consider private DNS a useful tool for limiting privacy risk. Data theft via DNS is a major concern and remains high: Top 3 solutions considered most effective for preventing data theft from the network: 26% 24% 19% Better monitoring and analysis of DNS traffic Securing network endpoints/NAC Additional firewalls/NGFWs/UTMs
An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 14 Improving Detection and Monitoring of Shadow IT DNS security enables complete visibility in clouds and apps, and organizations can leverage network data for discovery, giving the often-overwhelmed security teams more visibility into their cloud-based applications with detection and monitoring of shadow IT. Shadow IT is becoming a major concern for IT departments as lines of business and/or employees acquire or run IT systems, services, solutions, or technologies without their knowledge or approval. Organizations are worried about the increasing risk of new vulnerabilities in security, compliance, cost, efficiency, and even potential data issues linked to cloud residence. For those companies, DNS offers an easy option as it is a great tool to start enhancing protection against shadow IT: it is a simple, efficient, and cost-effective solution (as it is already there) and it’s easy to implement. DNS is used as the primary solution to detect shadow IT at 51% of organizations surveyed, alongside firewalls using deep packet inspection (DPI), also at 51%, and proxy at 48%. DNS traffic and network data will help businesses better understand employee behavior and therefore detect shadow IT in terms of unsanctioned and unmanaged cloud apps, but also detect, identify, and monitor machine-to-machine communications. Organizations are realizing the value of DNS to help detect Shadow IT: 39%of organizations have a high level of confidence with their shadow IT detection capability. 61%have NOT made shadow IT a priority for their organization in 2022. However, the majority of organizations are putting little focus on shadow IT detection, despite the concerns around cloud services, apps, devices (including IoT), unauthorized developments (for example, rogue DB), or use of resources from unauthorized users that can weaken the overall security posture of the organization:
An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 15 Essential Guidance Recommendations: 3 For strengthened network security, DNS is by nature your first line of defense thanks to threat detection over user behavior, access control capability at client level, and potential to automatically share data and qualified security events with SecOps teams. DNS is a foundational component for reinforcing the overall security chain to protect data and business operations. Prevent lateral movement of threats by creating an early security barrier Combining DNS filtering with allow and deny client and domain lists provides a first point of control to ensure only specific users are permitted access to specific apps and services. Speed up threat remediation by improving NetSecOps collaboration Automated sharing of actionable data and events coming from DNS traffic analysis with security teams simplifies SOC investigation and response. Reduce risk of new vulnerabilities by enhancing shadow IT detection DNS visibility across both on- premises and cloud offers a simple cost-effective solution for detecting unauthorized apps and services. 1 2 For a free DNS risk assessment to identify vulnerabilities and improve your protection, click here or visit our website
An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 16 About EfficientIP EfficientIP is a network security and automation company, specializing in DNS-DHCP-IPAM (DDI). We promote business continuity by making your IP infrastructure foundation reliable, agile, and secure. Since 2004, we have continued to expand our reach, providing solutions, professional services, and support all over the world with the help of select business partners. Our passionate teams have delivered successful projects to over 1,000 customers globally, and ensured operational efficiency through dedicated customer care. For more information, visit www.efficientip.com and follow @efficientip on Twitter. Our goal is to enable secure and dynamic IP communication between users and apps/services. We achieve this by: • Securing DNS services to protect users, apps, and data and ensure service continuity • Simplifying life-cycle management of DDI resources, via smart automation, cross-platform visibility, and policy control through a single pane of glass Companies rely on us to help control the risks and reduce the complexity of challenges they face. This applies particularly to modern key IT initiatives such as cloud applications, virtualization, mobility, digital transformation, and SDN.
An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 17 Methodology This InfoBrief is based on an IDC survey conducted on behalf of EfficientIP of 1,080 organizations worldwide in early 2022. The results represent their experience for the previous year. Regions Number of Business Size Segments Number of Countries Number of Industry Sectors Method Europe North America Asia 5 9 10 CAWI + CATI • A yearly comparison was carried out like for like with survey data from 2021. • Screener requirements: companies with 500 employees or more, all industry segments with quotas per region, target respondents have an IT-related job function, are decision makers, and set the security strategy in the organization.
An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 18 International Data Corporation (IDC) is the premier global provider of market intelligence, advisory services, and events for the information technology, telecommunications, and consumer technology markets. IDC helps IT professionals, business executives, and the investment community make fact-based decisions on technology purchases and business strategy. More than 1,100 IDC analysts provide global, regional, and local expertise on technology and industry opportunities and trends in over 110 countries worldwide. For 50 years, IDC has provided strategic insights to help our clients achieve their key business objectives. IDC is a subsidiary of IDG, the world’s leading technology media, research, and events company. Copyright Notice Any IDC information or reference to IDC that is to be used in advertising, press releases, or promotional materials requires prior written approval from IDC. For permission requests contact the Custom Solutions information line at 508-988-7610 or permissions@idc.com. Translation and/or localization of this document require an additional license from IDC. For more information on IDC visit www.idc.com. For more information on IDC Custom Solutions, visit http://www.idc.com/prodserv/custom_solutions/index.jsp. Corporate Headquarters: 140 Kendrick Street, Building B, Needham, MA 02494 USA P. 508.872.8200 www.idc.com Copyright 2022 IDC. Reproduction is forbidden unless authorized. All rights reserved. IDC UK 5th Floor, Ealing Cross, 85 Uxbridge Road London W5 5TH, United Kingdom 44.208.987.7100 Twitter: @IDC idc-community.com www.idc.com Corporate Headquarters 140 Kendrick Street, Building B, Needham, MA 02494 USA 508.872.8200 www.idc.com About IDC

Recommandé

2015 Global Threat Intelligence Report Executive Summary | NTT i3
2015 Global Threat Intelligence Report Executive Summary | NTT i32015 Global Threat Intelligence Report Executive Summary | NTT i3
2015 Global Threat Intelligence Report Executive Summary | NTT i3
NTT Innovation Institute Inc.
 
Defending Threats Beyond DDoS Attacks: Featuring Guest Speaker from IDC
Defending Threats Beyond DDoS Attacks: Featuring Guest Speaker from IDCDefending Threats Beyond DDoS Attacks: Featuring Guest Speaker from IDC
Defending Threats Beyond DDoS Attacks: Featuring Guest Speaker from IDC
Cloudflare
 
The Morphing DDoS and Bot Landscape: Featuring Guest Speaker from IDC
The Morphing DDoS and Bot Landscape: Featuring Guest Speaker from IDCThe Morphing DDoS and Bot Landscape: Featuring Guest Speaker from IDC
The Morphing DDoS and Bot Landscape: Featuring Guest Speaker from IDC
Cloudflare
 
Securing IoT at Scale Requires a Holistic Approach
Securing IoT at Scale Requires a Holistic ApproachSecuring IoT at Scale Requires a Holistic Approach
Securing IoT at Scale Requires a Holistic Approach
Juniper Networks
 
MT50 Data is the new currency: Protect it!
MT50 Data is the new currency: Protect it!MT50 Data is the new currency: Protect it!
MT50 Data is the new currency: Protect it!
Dell EMC World
 
Infinity_Architecture_June_Webinar__Final_Wiki.pptx
Infinity_Architecture_June_Webinar__Final_Wiki.pptxInfinity_Architecture_June_Webinar__Final_Wiki.pptx
Infinity_Architecture_June_Webinar__Final_Wiki.pptx
ssuser365526
 
Roadmap of Cyber-security from On-Prem to Cloud Journey - Trend Micro
Roadmap of Cyber-security from On-Prem to Cloud Journey - Trend MicroRoadmap of Cyber-security from On-Prem to Cloud Journey - Trend Micro
Roadmap of Cyber-security from On-Prem to Cloud Journey - Trend Micro
Prime Infoserv
 
The Secure Path to Value in the Cloud by Denny Heaberlin
The Secure Path to Value in the Cloud by Denny HeaberlinThe Secure Path to Value in the Cloud by Denny Heaberlin
The Secure Path to Value in the Cloud by Denny Heaberlin
Cloud Expo
 

Recommandé

2015 Global Threat Intelligence Report Executive Summary | NTT i3
2015 Global Threat Intelligence Report Executive Summary | NTT i32015 Global Threat Intelligence Report Executive Summary | NTT i3
2015 Global Threat Intelligence Report Executive Summary | NTT i3
NTT Innovation Institute Inc.
 
Defending Threats Beyond DDoS Attacks: Featuring Guest Speaker from IDC
Defending Threats Beyond DDoS Attacks: Featuring Guest Speaker from IDCDefending Threats Beyond DDoS Attacks: Featuring Guest Speaker from IDC
Defending Threats Beyond DDoS Attacks: Featuring Guest Speaker from IDC
Cloudflare
 
The Morphing DDoS and Bot Landscape: Featuring Guest Speaker from IDC
The Morphing DDoS and Bot Landscape: Featuring Guest Speaker from IDCThe Morphing DDoS and Bot Landscape: Featuring Guest Speaker from IDC
The Morphing DDoS and Bot Landscape: Featuring Guest Speaker from IDC
Cloudflare
 
Securing IoT at Scale Requires a Holistic Approach
Securing IoT at Scale Requires a Holistic ApproachSecuring IoT at Scale Requires a Holistic Approach
Securing IoT at Scale Requires a Holistic Approach
Juniper Networks
 
MT50 Data is the new currency: Protect it!
MT50 Data is the new currency: Protect it!MT50 Data is the new currency: Protect it!
MT50 Data is the new currency: Protect it!
Dell EMC World
 
Infinity_Architecture_June_Webinar__Final_Wiki.pptx
Infinity_Architecture_June_Webinar__Final_Wiki.pptxInfinity_Architecture_June_Webinar__Final_Wiki.pptx
Infinity_Architecture_June_Webinar__Final_Wiki.pptx
ssuser365526
 
Roadmap of Cyber-security from On-Prem to Cloud Journey - Trend Micro
Roadmap of Cyber-security from On-Prem to Cloud Journey - Trend MicroRoadmap of Cyber-security from On-Prem to Cloud Journey - Trend Micro
Roadmap of Cyber-security from On-Prem to Cloud Journey - Trend Micro
Prime Infoserv
 
The Secure Path to Value in the Cloud by Denny Heaberlin
The Secure Path to Value in the Cloud by Denny HeaberlinThe Secure Path to Value in the Cloud by Denny Heaberlin
The Secure Path to Value in the Cloud by Denny Heaberlin
Cloud Expo
 
EndpointSecurityConcerns2014
EndpointSecurityConcerns2014EndpointSecurityConcerns2014
EndpointSecurityConcerns2014
Peggy Lawless
 
Developing Your Security Foundation: A Guide for Nonprofits During the Pandem...
Developing Your Security Foundation: A Guide for Nonprofits During the Pandem...Developing Your Security Foundation: A Guide for Nonprofits During the Pandem...
Developing Your Security Foundation: A Guide for Nonprofits During the Pandem...
TechSoup
 
Drivelock modern approach of it security & amp; encryption solution -whitep...
Drivelock modern approach of it security & amp; encryption solution -whitep...Drivelock modern approach of it security & amp; encryption solution -whitep...
Drivelock modern approach of it security & amp; encryption solution -whitep...
Arbp Worldwide
 
Navigating the IT landscape - Thomas Meyer - IDC
Navigating the IT landscape - Thomas Meyer - IDCNavigating the IT landscape - Thomas Meyer - IDC
Navigating the IT landscape - Thomas Meyer - IDC
Harry Gunns
 
BKNIX Peering Forum 2017 : DDoS Attack Trend and Defense Strategy
BKNIX Peering Forum 2017 : DDoS Attack Trend and Defense StrategyBKNIX Peering Forum 2017 : DDoS Attack Trend and Defense Strategy
BKNIX Peering Forum 2017 : DDoS Attack Trend and Defense Strategy
Nexusguard
 
Wireless survey-report-saa-2016
Wireless survey-report-saa-2016Wireless survey-report-saa-2016
Wireless survey-report-saa-2016
Samir Kotarwar
 
MT54 Better security is better business
MT54 Better security is better businessMT54 Better security is better business
MT54 Better security is better business
Dell EMC World
 
ztna-2-0-report.pdf
ztna-2-0-report.pdfztna-2-0-report.pdf
ztna-2-0-report.pdf
Anto664537
 
Cybersecurity
CybersecurityCybersecurity
Cybersecurity
IndSightsResearchSG
 
Big Data Analytics Solutions
Big Data Analytics SolutionsBig Data Analytics Solutions
Big Data Analytics Solutions
harman041
 
Cyber Security Conference - A deeper look at Microsoft Security Strategy, Tec...
Cyber Security Conference - A deeper look at Microsoft Security Strategy, Tec...Cyber Security Conference - A deeper look at Microsoft Security Strategy, Tec...
Cyber Security Conference - A deeper look at Microsoft Security Strategy, Tec...
Microsoft
 
Unique Security Challenges in the Datacenter Demand Innovative Solutions
Unique Security Challenges in the Datacenter Demand Innovative SolutionsUnique Security Challenges in the Datacenter Demand Innovative Solutions
Unique Security Challenges in the Datacenter Demand Innovative Solutions
Juniper Networks
 
Private sector cyber resilience and the role of data diodes
Private sector cyber resilience and the role of data diodesPrivate sector cyber resilience and the role of data diodes
Private sector cyber resilience and the role of data diodes
Ollie Whitehouse
 
Federal Webinar: Leverage IT Operations Monitoring and Log Data to Reduce Ins...
Federal Webinar: Leverage IT Operations Monitoring and Log Data to Reduce Ins...Federal Webinar: Leverage IT Operations Monitoring and Log Data to Reduce Ins...
Federal Webinar: Leverage IT Operations Monitoring and Log Data to Reduce Ins...
SolarWinds
 
Sicurezza IT: una nuova cultura del rischio IT per promuovere la trasformazio...
Sicurezza IT: una nuova cultura del rischio IT per promuovere la trasformazio...Sicurezza IT: una nuova cultura del rischio IT per promuovere la trasformazio...
Sicurezza IT: una nuova cultura del rischio IT per promuovere la trasformazio...
IDC Italy
 
Windstream Managed Network Security Infographic
Windstream Managed Network Security InfographicWindstream Managed Network Security Infographic
Windstream Managed Network Security Infographic
Ideba
 
Protect your hybrid workforce across the attack chain
Protect your hybrid workforce across the attack chainProtect your hybrid workforce across the attack chain
Protect your hybrid workforce across the attack chain
David J Rosenthal
 
White Paper: Securing Nomadic Workforce
White Paper: Securing Nomadic WorkforceWhite Paper: Securing Nomadic Workforce
White Paper: Securing Nomadic Workforce
Courtland Smith
 
DDI Market Major Manufacturers.pdf
DDI Market Major Manufacturers.pdfDDI Market Major Manufacturers.pdf
DDI Market Major Manufacturers.pdf
rohitsohel
 
kaspersky presentation for palette business solution June 2016 v1.0.
kaspersky presentation for palette business solution June 2016 v1.0.kaspersky presentation for palette business solution June 2016 v1.0.
kaspersky presentation for palette business solution June 2016 v1.0.
Onwubiko Emmanuel
 
A10_CompactTrainingv5.pdf (1).pdf
A10_CompactTrainingv5.pdf (1).pdfA10_CompactTrainingv5.pdf (1).pdf
A10_CompactTrainingv5.pdf (1).pdf
neoalt
 
VMware Carbon Black EDR Administrator.pdf
VMware Carbon Black EDR Administrator.pdf VMware Carbon Black EDR Administrator.pdf
VMware Carbon Black EDR Administrator.pdf
neoalt
 

Contenu connexe

Similaire à Effecientip DNS security.pdf

EndpointSecurityConcerns2014
EndpointSecurityConcerns2014EndpointSecurityConcerns2014
EndpointSecurityConcerns2014
Peggy Lawless
 
Navigating the IT landscape - Thomas Meyer - IDC
Navigating the IT landscape - Thomas Meyer - IDCNavigating the IT landscape - Thomas Meyer - IDC
Navigating the IT landscape - Thomas Meyer - IDC
Harry Gunns
 
Federal Webinar: Leverage IT Operations Monitoring and Log Data to Reduce Ins...
Federal Webinar: Leverage IT Operations Monitoring and Log Data to Reduce Ins...Federal Webinar: Leverage IT Operations Monitoring and Log Data to Reduce Ins...
Federal Webinar: Leverage IT Operations Monitoring and Log Data to Reduce Ins...
SolarWinds
 
Protect your hybrid workforce across the attack chain
Protect your hybrid workforce across the attack chainProtect your hybrid workforce across the attack chain
Protect your hybrid workforce across the attack chain
David J Rosenthal
 
kaspersky presentation for palette business solution June 2016 v1.0.
kaspersky presentation for palette business solution June 2016 v1.0.kaspersky presentation for palette business solution June 2016 v1.0.
kaspersky presentation for palette business solution June 2016 v1.0.
Onwubiko Emmanuel
 

Similaire à Effecientip DNS security.pdf (20)

EndpointSecurityConcerns2014
EndpointSecurityConcerns2014EndpointSecurityConcerns2014
EndpointSecurityConcerns2014
 
Developing Your Security Foundation: A Guide for Nonprofits During the Pandem...
Developing Your Security Foundation: A Guide for Nonprofits During the Pandem...Developing Your Security Foundation: A Guide for Nonprofits During the Pandem...
Developing Your Security Foundation: A Guide for Nonprofits During the Pandem...
 
Drivelock modern approach of it security & amp; encryption solution -whitep...
Drivelock modern approach of it security & amp; encryption solution -whitep...Drivelock modern approach of it security & amp; encryption solution -whitep...
Drivelock modern approach of it security & amp; encryption solution -whitep...
 
Navigating the IT landscape - Thomas Meyer - IDC
Navigating the IT landscape - Thomas Meyer - IDCNavigating the IT landscape - Thomas Meyer - IDC
Navigating the IT landscape - Thomas Meyer - IDC
 
BKNIX Peering Forum 2017 : DDoS Attack Trend and Defense Strategy
BKNIX Peering Forum 2017 : DDoS Attack Trend and Defense StrategyBKNIX Peering Forum 2017 : DDoS Attack Trend and Defense Strategy
BKNIX Peering Forum 2017 : DDoS Attack Trend and Defense Strategy
 
Wireless survey-report-saa-2016
Wireless survey-report-saa-2016Wireless survey-report-saa-2016
Wireless survey-report-saa-2016
 
MT54 Better security is better business
MT54 Better security is better businessMT54 Better security is better business
MT54 Better security is better business
 
ztna-2-0-report.pdf
ztna-2-0-report.pdfztna-2-0-report.pdf
ztna-2-0-report.pdf
 
Cybersecurity
CybersecurityCybersecurity
Cybersecurity
 
Big Data Analytics Solutions
Big Data Analytics SolutionsBig Data Analytics Solutions
Big Data Analytics Solutions
 
Cyber Security Conference - A deeper look at Microsoft Security Strategy, Tec...
Cyber Security Conference - A deeper look at Microsoft Security Strategy, Tec...Cyber Security Conference - A deeper look at Microsoft Security Strategy, Tec...
Cyber Security Conference - A deeper look at Microsoft Security Strategy, Tec...
 
Unique Security Challenges in the Datacenter Demand Innovative Solutions
Unique Security Challenges in the Datacenter Demand Innovative SolutionsUnique Security Challenges in the Datacenter Demand Innovative Solutions
Unique Security Challenges in the Datacenter Demand Innovative Solutions
 
Private sector cyber resilience and the role of data diodes
Private sector cyber resilience and the role of data diodesPrivate sector cyber resilience and the role of data diodes
Private sector cyber resilience and the role of data diodes
 
Federal Webinar: Leverage IT Operations Monitoring and Log Data to Reduce Ins...
Federal Webinar: Leverage IT Operations Monitoring and Log Data to Reduce Ins...Federal Webinar: Leverage IT Operations Monitoring and Log Data to Reduce Ins...
Federal Webinar: Leverage IT Operations Monitoring and Log Data to Reduce Ins...
 
Sicurezza IT: una nuova cultura del rischio IT per promuovere la trasformazio...
Sicurezza IT: una nuova cultura del rischio IT per promuovere la trasformazio...Sicurezza IT: una nuova cultura del rischio IT per promuovere la trasformazio...
Sicurezza IT: una nuova cultura del rischio IT per promuovere la trasformazio...
 
Windstream Managed Network Security Infographic
Windstream Managed Network Security InfographicWindstream Managed Network Security Infographic
Windstream Managed Network Security Infographic
 
Protect your hybrid workforce across the attack chain
Protect your hybrid workforce across the attack chainProtect your hybrid workforce across the attack chain
Protect your hybrid workforce across the attack chain
 
White Paper: Securing Nomadic Workforce
White Paper: Securing Nomadic WorkforceWhite Paper: Securing Nomadic Workforce
White Paper: Securing Nomadic Workforce
 
DDI Market Major Manufacturers.pdf
DDI Market Major Manufacturers.pdfDDI Market Major Manufacturers.pdf
DDI Market Major Manufacturers.pdf
 
kaspersky presentation for palette business solution June 2016 v1.0.
kaspersky presentation for palette business solution June 2016 v1.0.kaspersky presentation for palette business solution June 2016 v1.0.
kaspersky presentation for palette business solution June 2016 v1.0.
 

Plus de neoalt

A10_CompactTrainingv5.pdf (1).pdf
A10_CompactTrainingv5.pdf (1).pdfA10_CompactTrainingv5.pdf (1).pdf
A10_CompactTrainingv5.pdf (1).pdf
neoalt
 
VMware Carbon Black EDR Administrator.pdf
VMware Carbon Black EDR Administrator.pdf VMware Carbon Black EDR Administrator.pdf
VMware Carbon Black EDR Administrator.pdf
neoalt
 
721-00233-123 BlackBerry UEM version 12.9 Advanced_SYL.PDF
721-00233-123 BlackBerry UEM version 12.9 Advanced_SYL.PDF721-00233-123 BlackBerry UEM version 12.9 Advanced_SYL.PDF
721-00233-123 BlackBerry UEM version 12.9 Advanced_SYL.PDF
neoalt
 

Plus de neoalt (7)

A10_CompactTrainingv5.pdf (1).pdf
A10_CompactTrainingv5.pdf (1).pdfA10_CompactTrainingv5.pdf (1).pdf
A10_CompactTrainingv5.pdf (1).pdf
 
VMware Carbon Black EDR Administrator.pdf
VMware Carbon Black EDR Administrator.pdf VMware Carbon Black EDR Administrator.pdf
VMware Carbon Black EDR Administrator.pdf
 
AD-Bridge-course.pdf
AD-Bridge-course.pdfAD-Bridge-course.pdf
AD-Bridge-course.pdf
 
AD-Bridge.pdf
AD-Bridge.pdfAD-Bridge.pdf
AD-Bridge.pdf
 
721-00233-123 BlackBerry UEM version 12.9 Advanced_SYL.PDF
721-00233-123 BlackBerry UEM version 12.9 Advanced_SYL.PDF721-00233-123 BlackBerry UEM version 12.9 Advanced_SYL.PDF
721-00233-123 BlackBerry UEM version 12.9 Advanced_SYL.PDF
 
Introduction to SIEM.pptx
Introduction to SIEM.pptxIntroduction to SIEM.pptx
Introduction to SIEM.pptx
 
ArcSight Basics.ppt
ArcSight Basics.pptArcSight Basics.ppt
ArcSight Basics.ppt
 

Dernier

Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Igalia
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
Enterprise Knowledge
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
Delhi Call girls
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
sammart93
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
Earley Information Science
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
Enterprise Knowledge
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
Delhi Call girls
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
Safe Software
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
giselly40
 

Dernier (20)

GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
GenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdfGenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdf
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 

Effecientip DNS security.pdf

  • 1. An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 1 An IDC InfoBrief, Sponsored by Author: Romain Fouchereau Research Manager European Security, IDC Securing Anywhere Networking IDC #EUR149048522 JUNE 2022 DNS Security for Business Continuity and Resilience 2022 Global DNS Threat Report
  • 2. An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 2 Content Executive Summary 3 Threat Landscape 4 Impact of Attacks 5 State of Defenses 6 No Industry Is Immune — All Organizations Are at Risk 7 Enabling Zero-Trust Models with DNS 9 Securing the Extended Enterprise and the Hybrid Workforce 10 Actionable DNS Event Data for the Security Ecosystem 11 Continuity and Resilience of Cloud and Services 12 Data Privacy, Theft, and Compliance 13 Improving Detection and Monitoring of Shadow IT 14 Essential Guidance 15 About EfficientIP 16 Methodology 17
  • 3. An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 3 Executive Summary DNS is a powerful tool to guarantee availability and integrity of the network, and a great instrument to detect and mitigate threats before they can propagate thanks to its full visibility over all network activity. DNS security is a key component of the overall security ecosystem of tools, products, and services. Hybrid work models and more reliance on cloud applications mean more attacks, and more attack types on infrastructures mean greater disruption. To respond and defend against these threats, organizations increasingly recognize the importance of DNS as part of their security strategies. With organizations adopting a “work from anywhere” approach, the 2022 DNS Security Survey shows that the frequency and damage cost of DNS attacks remain as high as ever, causing worrying impacts on service continuity and data confidentiality for on- premises, cloud, and remote workers. The good news is that the importance of DNS for overall network security is being more and more acknowledged, with companies understanding its value for strengthening resilience, protecting data privacy, and for providing an early security barrier by controlling access to critical apps and services. Jean-Yves Bisiaux CTO, EfficientIP 88% experienced one or more attack 70% suffered application downtime (cloud or in-house) $942k average cost of attack 51% were victim to a phishing attack 7 attacks on average per organization in the past 12 months 24% had data stolen as a result of an attack Awareness of DNS security is very strong: 73% say it is critical
  • 4. An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 4 Threat Landscape New challenges related to hybrid workforces include the privacy of the data traffic of the remote workers. A dedicated DNS security solution will provide better control and security to protect applications, users, and data. DNS has been the Achilles’ heel of the network since its creation, making it a target of choice for cybercriminals to exploit weaknesses, gain access to the network, and exfiltrate data. This is why it is vital for organizations to deploy a proper DNS security solution to mitigate risks and increase network security: Hybrid work models have created new challenges for IT teams. With the disappearance of the perimeter, both attack surface and cloud usage have increased considerably. Survey results show that the number and size of attacks remain very high, and cybercriminals are using all available tools to gain access to networks, disrupt operations, and steal data by leveraging vulnerabilities and cloud misconfigurations. The size of the DDoS attacks remains very high: According to IDC research on the hybrid workforce: As digital enterprises adopt hybrid work models, IT teams need to enable secure access for all employees, but also drive improved productivity and better work experience and increase overall business agility and resilience. Security challenges: • Unsecure home networks • Targeted cyberattacks • Proliferation of shadow IT • IoT devices on home networks 45%believe remote and hybrid work models will be part of accepted work practices. 98%anticipate challenges in implementing hybrid work. 88%of organizations experienced an attack last year Hybrid Workforce Source: IDC Future Enterprise Resilience and Spending Survey (December 2021) 7 attacks per year on average for each organization Top DNS-based attacks: all types of attacks have increased DNS phishing: 51% vs 49% DDoS attacks: 30% vs 29% DNS-based malware: 43% vs 38% DNS hijacking/ credential attack: 28% vs 27% Cloud instance misconfiguration abuse: 27% vs 23% 2022 2021 DNS tunneling: 28% vs 24% Zero-day vulnerabilities: 26% vs 23% 52%of attacks were over 5Gb/s (54% last year).
  • 5. An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 5 Impact of Attacks Because of the high costs and frequency of attacks, many companies will struggle to remain in business. Breaches not only directly affect an organization’s finances, but also its reputation, intellectual property, and customers. DNS-based attacks such as ransomware are becoming more pervasive, and cybercriminals are specifically targeting the hybrid workforce. No organization — of any size, in any industry — is safe. Average cost of attack*: 2022 $942,000 2021 $950,000 70% of organizations were hit by application downtime.** As a result of attacks, downtime — from in-house applications or cloud services — means employees, customers, and partners are not able to access anything for hours. This shows how important DNS is for resilience and to secure access between users and applications. *The cost includes cost of mitigation, full-time-equivalent (FTE) hours spent, and business damage **Consolidation of in-house app and cloud service downtime DNS attacks directly impact business outcomes, and the result can directly be measured on the business: DNS allow/deny filtering capabilities play a critical role in reducing the impact of DNS-based attacks — such as application downtime and other more long- term business losses — as they can stop malware from spreading at the time of infection. 2022 2021 Cloud service downtime (SaaS or public cloud) Loss of business In-house application downtime (private datacenter or private cloud) Brand damage Compromised website Sensitive customer information or intellectual property stolen 44% 32% 44% 31% 42% 24% 46% 30% 51% 27% 42% 26%
  • 6. An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 6 State of Defenses To ensure business continuity and global resilience of all apps and services, it’s important to leverage DNS capabilities to mitigate DNS-based attacks with adaptive countermeasures. Awareness of the importance of DNS security remains high and a concern for most organizations: 73% say it is critical for their business. The survey shows that over 99% of companies do have some form of security for DNS in place, but 43% do not use a security solution built into a DNS server to benefit from the added advantages of these solutions, such as business continuity, data protection, and user protection. Although the situation is improving year by year, organizations are still taking inappropriate countermeasures when attacked, and this is having a negative impact on business continuity: Average time to mitigate increased to 6H 07M (+29 minutes) with 24% taking longer than 7 hours (was 23%). Digital transformation resulted in faster multicloud adoption, but this also translated into an overall increase in management complexity for the IT security teams, making mitigation even more time consuming and difficult. To ensure security of services during a DNS-based attack, 62% of organizations are still NOT using auto-remediation. DNS analytics can provide actionable information to improve security of the workforce and IoT deployments, strengthen resilience, and enhance user experience, but 25% of organizations still don’t collect or analyze their DNS traffic. Shut down the DNS server or service Disable applications Shut down part or all of the network infrastructure 38% 36% 25% 47% 38% 36% Business continuity 2022 2021
  • 7. An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 7 No Industry Is Immune — All Organizations Are at Risk Most attacked (9.5 times) and for the highest value $1.3 million. Most targeted industry by ransomware (50%). Highest results in cloud service downtime as a result of attack (50%) and data stolen (31%). Most targeted by DDoS attacks (37%) and highest suffered loss of business (35%). Most likely to shut down the network infrastructure during an attack (29%); 53% were a victim of phishing attacks. Largest DDoS attacks; 12% suffered attacks over 50Gb/s; 64% do not have confidence in their shadow IT detection capability. FINANCE RETAIL TELCO HEALTHCARE EDUCATION
  • 8. An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 8 No Industry Is Immune — All Organizations Are at Risk 39% suffered a ransomware attack; 39% shut down their DNS server or service (third highest). Longest to remediate attack: 7h 35m; 38% brand damage (highest) with risk of customers switching to another provider. Highest cloud instance misconfigurations (29%); 30% of organizations were victims of zero- day vulnerabilities (the highest in the survey). 50% of organizations have had their website compromised; highest in-app downtime (52%). Most likely to fall for phishing attacks (58%); 49% hit by cloud service downtime. GOVERNMENT UTILITIES MANUFACTURING TRANSPORTATION BUSINESS SERVICES
  • 9. An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 9 Enabling Zero-Trust Models with DNS In zero-trust strategies, DNS security becomes another layer of the framework to increase and support application access control using deny/allow lists. Microsegmentation for intelligent control can be done at the DNS level to simplify deployment and management operations. Filtering access with allow/deny lists is essential for a successful zero-trust strategy. But management complexity is a major hurdle, especially when dealing with firewalls. IT security teams need simpler solutions: • DNS is simple to set up and acts early in the communication process. • For filtering access, DNS offers high reward for low effort. 66%of organizations have medium to low satisfaction with the management complexity and implementation cost of their security solution in terms of preventing the lateral propagation of threats. App access control: Zero trust is a key approach in security strategies, founded on least-privilege access principles and requiring control of which devices can access which apps and services. Building a cybersecurity program around zero-trust principles will generate security data that can be used to make decisions that can be fed back into each individual area of a security program through updated policies and adjustments, making each one more efficient and effective. Threat intelligence and DNS filtering: Threat information comes from data and telemetry generated by the DNS and from data based on internal network activity, such as alerts, logs, and traffic flow. Application access control: Network segmentation of user groups, mapped to allow/deny domain lists for DNS filtering of client queries, can reduce exposure risk by offering a security barrier controlling app access at the earliest point in flow. 74%make use of internal DNS traffic analysis vs 70% last year. 22%still use only third- party feeds. Threat intelligence: To improve application access control, 56% already use DNS. DNS domain deny and/or allow lists are valuable for 83% (vs 77% in 2021) to improve control over which users can access which apps. To manage DNS filtering lists: Maturity of zero trust: Zero-trust implementations have increased over the past year, with only 24% of organizations not yet exploring it.
  • 10. An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 10 Securing the Extended Enterprise and the Hybrid Workforce Private DNS security can be leveraged to reduce management complexity, boost privacy, and extend the same on-premises policies to the extended enterprise: cloud, IoT, SD-WAN, remote workers, etc. Digital transformation and hybrid work models are changing the network with the adoption of new technologies, strategies, and delivery models. Security must also extend beyond the traditional enterprise perimeter to address new imperatives such as IoT, cloud, remote workforce, datacenter, SD-WAN, and 5G. The extended enterprise: As organizations better understand the risks and vulnerabilities their organizations face, they see the critical role of DNS in their overall security strategy for the extended enterprise. IoT deployments 51% vs 47% Cloud deployments 56% vs 52% Datacenter 48% To improve IoT security, the use of DNS for filtering access of IoT devices to specific apps is seen as important by 84% of organizations. DNS complements other IoT security products as it can control access from devices to specific parts of the network, apps, and services through allow and deny lists filtering. This will help identify and block any rogue device or botnet threats on the network and mitigate threats and reduce risk. DNS security for IoT protection DNS is critical in securing: 2022 2021 DNS security is seen as a strong asset for securing the hybrid workforce. Organizations say it is a critical component of their overall security: DNS security can also protect data and application traffic to ensure safe and secure online activities: Rather than relying on expensive, complicated, and unscalable VPN solutions, companies often use standard ISP/public DNS services, exposing themselves to privacy and data security vulnerabilities. Using private DNS will prevent snooping and keep data related to traffic within the organization. As well as offering more controlled privacy, private DNS also enforces security policies for all users and devices. 49%see private enterprise DNS solutions as useful for protecting apps and services while making them accessible for remote workers (in addition to VPN and firewall). This was 42% last year. 47%are considering setting up a private DNS system to limit the privacy risks of using DoH with a public provider (49% last year). 54%for the remote workforce 50%for the on-premises workforce
  • 11. An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 11 Actionable DNS Event Data for the Security Ecosystem DNS security provides real-time insights into the full security ecosystem of products and services for enriched threat intelligence to help identify threat indicators, assess risk, and prevent future attacks. DNS will help enhance and secure the day-to-day function by adding relevant telemetry and analytics on top of software-defined networking and security tools. To successfully deliver their digital transformation strategies and focus on business outcomes, organizations must be aware that collaboration between networking and security teams is essential. From SD-WAN implementation to cloud migration or datacenter modernization, it is vital that network and security teams successfully work together: • Security teams need network data from DNS traffic (ideally already analyzed data as raw data is not relevant/efficient) to get visibility and to understand the infrastructure. • Networking teams need a security-by-design approach to their operations to function safely and to enhance collaboration between NetOps and SecOps. Secure automation requires comprehensive source of truth data on the configuration of a network and the state of that network: 75%of network teams share their DNS- DHCP-IPAM data with security teams (source: EMA 2021 NetSecOps Report). NetSecOps: Networking and Security Collaboration To protect data, apps, cloud services, and users — whether on premises or remote — DNS plays a key role in the security ecosystem due to its understanding of network traffic intent, ability to filter client access, and enhanced control over user privacy. A holistic approach can be achieved by sharing actionable data and security events. Monitoring DNS traffic can be a rich source of data for security operations center (SOC) teams as they monitor and analyze the security posture of the organization. DNS can help enforce security policies and automate security responses — and then feed pertinent security events into a SIEM and/or SOC (and reduce cost), as well as other components of the security ecosystem. DNS traffic analysis is the third most used tool to detect compromised devices (behind AV and FW logs). SOAR: rise in use of automation for network security policy management: 60% are using mostly automated solutions (57% last year). 23%of DNS traffic is sent to SIEM for analysis vs 27% last year.
  • 12. An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 12 Continuity and Resilience of Cloud and Services Automation as part of the DNS solution in multicloud environments will enable automated provisioning and deprovisioning of IP resources and eliminate the risk of misconfigurations. Constant monitoring and management will ensure deployment is optimal for stronger DNS service continuity and resilience. On October 4, 2021, Facebook and its subsidiaries became globally unavailable for seven hours. The outage also prevented anyone trying to use “log in with Facebook” from accessing third-party sites and cut off all Facebook’s internal communications. The issue was identified as a border gateway protocol (BGP) withdrawal of the IP address prefixes in which Facebook’s DNS servers were hosted, making it impossible for users to resolve Facebook and related domain names and reach services. As a result, Facebook’s share price dropped 5% and the company lost at least $60 million in advertising revenue during that time. The importance of continuity and resilience: How Facebook completely disappeared from the internet DNS is critical for users to access their apps and services stored on premises or in the cloud; when DNS services are affected, users are unable to access their applications: no DNS means no business. The cloud-first approach has contributed to most organizations being directly impacted by cloud and application downtime when facing DNS attacks, from enterprises to service providers and even into the midmarket, and a DNS platform can help secure networks, applications, and data. Continuity requires smart management of app traffic. DNS can be used to intelligently steer app traffic to ensure app availability and improve user experience. With so much reliance on cloud, and the difficulty of managing multicloud, it is vital to ensure continuity and resilience of their cloud apps and services, but relying on the DNS service of the cloud providers is complex and requires constant monitoring and updates, often leading to DNS misconfigurations impacting continuity. DNS security provides analytic tools such as behavioral threat detection and adaptive countermeasures and disaster recovery features to safeguard DNS service. Maintaining DNS services resilience is vital for many enterprises because they rely on their online presence for their customers, partners, and employees. Malfunctioning or unavailable DNS services could lead to internet invisibility and impact business and reputation, resulting in a loss of revenue and brand damages. During DNS attacks organizations still reacted by shutting down: 44% were hit by cloud service downtime 44% were hit by in-house application downtime As result of a DNS-based attack: 56% view DNS as a critical component of their overall cloud strategy (up from 52% last year) and 48% for the datacenter. 27% suffered a DNS attack abusing cloud misconfiguration (up from 23% last year). 38% DNS services 36% Applications 25% Infrastructure
  • 13. An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 13 Data Privacy, Theft, and Compliance Data theft Data privacy DNS tools can take cybersecurity privacy and compliance programs to the next level through constant and real-time traffic monitoring and analysis of all data for protection and privacy. DNS security checks will protect from data exfiltration and help organizations to achieve their compliance regulations (GDPR, CCPA, PIPEDA, PDPA, etc.). Ransomware has become a profitable industry, resulting in substantial ransom demands, major disruptions, and leaked or stolen data. DNS security is the top method for protection against malware and ransomware at 57%. As basic DNS is no longer adequate, recommendations to protect against ransomware include: • Investing in response policy zones (RPZs), threat intelligence, and log analysis • Using a high-performance dedicated DNS DNS can be used as a foundation tool for anti- ransomware programs. Rise of ransomware Accelerated digital transformation and the shift toward a hybrid work model requires organizations to rethink their data protection strategies and upscale their data security infrastructures for cloud environments. Traditional security solutions cannot detect exfiltration, so organizations can remain unaware of a data theft for a long time. Through real-time analysis of DNS transactions, organizations can detect signs of DNS tunneling and stop data theft quickly. Organizations therefore see it as their top solution for protecting their intellectual property and sensitive data. As they move to hybrid workforce models, most organizations are concerned about data privacy when using DNS from public providers. A private DNS will protect all DNS requests through encryption, preventing eavesdropping and keeping data safe from public providers that could use the information for their own analysis. 43%of organizations were victims of ransomware. 24%had sensitive customer information or IP stolen 72%consider using DoH with a public provider to be a main risk (74% last year). 49%consider private DNS a useful tool for limiting privacy risk. Data theft via DNS is a major concern and remains high: Top 3 solutions considered most effective for preventing data theft from the network: 26% 24% 19% Better monitoring and analysis of DNS traffic Securing network endpoints/NAC Additional firewalls/NGFWs/UTMs
  • 14. An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 14 Improving Detection and Monitoring of Shadow IT DNS security enables complete visibility in clouds and apps, and organizations can leverage network data for discovery, giving the often-overwhelmed security teams more visibility into their cloud-based applications with detection and monitoring of shadow IT. Shadow IT is becoming a major concern for IT departments as lines of business and/or employees acquire or run IT systems, services, solutions, or technologies without their knowledge or approval. Organizations are worried about the increasing risk of new vulnerabilities in security, compliance, cost, efficiency, and even potential data issues linked to cloud residence. For those companies, DNS offers an easy option as it is a great tool to start enhancing protection against shadow IT: it is a simple, efficient, and cost-effective solution (as it is already there) and it’s easy to implement. DNS is used as the primary solution to detect shadow IT at 51% of organizations surveyed, alongside firewalls using deep packet inspection (DPI), also at 51%, and proxy at 48%. DNS traffic and network data will help businesses better understand employee behavior and therefore detect shadow IT in terms of unsanctioned and unmanaged cloud apps, but also detect, identify, and monitor machine-to-machine communications. Organizations are realizing the value of DNS to help detect Shadow IT: 39%of organizations have a high level of confidence with their shadow IT detection capability. 61%have NOT made shadow IT a priority for their organization in 2022. However, the majority of organizations are putting little focus on shadow IT detection, despite the concerns around cloud services, apps, devices (including IoT), unauthorized developments (for example, rogue DB), or use of resources from unauthorized users that can weaken the overall security posture of the organization:
  • 15. An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 15 Essential Guidance Recommendations: 3 For strengthened network security, DNS is by nature your first line of defense thanks to threat detection over user behavior, access control capability at client level, and potential to automatically share data and qualified security events with SecOps teams. DNS is a foundational component for reinforcing the overall security chain to protect data and business operations. Prevent lateral movement of threats by creating an early security barrier Combining DNS filtering with allow and deny client and domain lists provides a first point of control to ensure only specific users are permitted access to specific apps and services. Speed up threat remediation by improving NetSecOps collaboration Automated sharing of actionable data and events coming from DNS traffic analysis with security teams simplifies SOC investigation and response. Reduce risk of new vulnerabilities by enhancing shadow IT detection DNS visibility across both on- premises and cloud offers a simple cost-effective solution for detecting unauthorized apps and services. 1 2 For a free DNS risk assessment to identify vulnerabilities and improve your protection, click here or visit our website
  • 16. An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 16 About EfficientIP EfficientIP is a network security and automation company, specializing in DNS-DHCP-IPAM (DDI). We promote business continuity by making your IP infrastructure foundation reliable, agile, and secure. Since 2004, we have continued to expand our reach, providing solutions, professional services, and support all over the world with the help of select business partners. Our passionate teams have delivered successful projects to over 1,000 customers globally, and ensured operational efficiency through dedicated customer care. For more information, visit www.efficientip.com and follow @efficientip on Twitter. Our goal is to enable secure and dynamic IP communication between users and apps/services. We achieve this by: • Securing DNS services to protect users, apps, and data and ensure service continuity • Simplifying life-cycle management of DDI resources, via smart automation, cross-platform visibility, and policy control through a single pane of glass Companies rely on us to help control the risks and reduce the complexity of challenges they face. This applies particularly to modern key IT initiatives such as cloud applications, virtualization, mobility, digital transformation, and SDN.
  • 17. An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 17 Methodology This InfoBrief is based on an IDC survey conducted on behalf of EfficientIP of 1,080 organizations worldwide in early 2022. The results represent their experience for the previous year. Regions Number of Business Size Segments Number of Countries Number of Industry Sectors Method Europe North America Asia 5 9 10 CAWI + CATI • A yearly comparison was carried out like for like with survey data from 2021. • Screener requirements: companies with 500 employees or more, all industry segments with quotas per region, target respondents have an IT-related job function, are decision makers, and set the security strategy in the organization.
  • 18. An IDC InfoBrief, Sponsored by IDC #EUR149048522 © 2022 IDC 18 International Data Corporation (IDC) is the premier global provider of market intelligence, advisory services, and events for the information technology, telecommunications, and consumer technology markets. IDC helps IT professionals, business executives, and the investment community make fact-based decisions on technology purchases and business strategy. More than 1,100 IDC analysts provide global, regional, and local expertise on technology and industry opportunities and trends in over 110 countries worldwide. For 50 years, IDC has provided strategic insights to help our clients achieve their key business objectives. IDC is a subsidiary of IDG, the world’s leading technology media, research, and events company. Copyright Notice Any IDC information or reference to IDC that is to be used in advertising, press releases, or promotional materials requires prior written approval from IDC. For permission requests contact the Custom Solutions information line at 508-988-7610 or permissions@idc.com. Translation and/or localization of this document require an additional license from IDC. For more information on IDC visit www.idc.com. For more information on IDC Custom Solutions, visit http://www.idc.com/prodserv/custom_solutions/index.jsp. Corporate Headquarters: 140 Kendrick Street, Building B, Needham, MA 02494 USA P. 508.872.8200 www.idc.com Copyright 2022 IDC. Reproduction is forbidden unless authorized. All rights reserved. IDC UK 5th Floor, Ealing Cross, 85 Uxbridge Road London W5 5TH, United Kingdom 44.208.987.7100 Twitter: @IDC idc-community.com www.idc.com Corporate Headquarters 140 Kendrick Street, Building B, Needham, MA 02494 USA 508.872.8200 www.idc.com About IDC