Infoblox Advanced DNS Protection
Security, availability, and integrity are the top three concerns regarding DNS infrastructure. Attackers seek weakest links and pressure points to harm or illegally exploit businesses, and by its very nature, the Domain Name System (DNS) protocol is easy to exploit. As a result, cyber attacks on DNS are on the rise.
DNS distributed denial of service (DDoS) attacks are designed to bring down DNS servers and consume network resources, thereby interfering with critical IT applications such as email, web sites, VoIP, and software as a service (SaaS). DNS is now the number one targeted service for application-layer attacks and is the number one protocol used in reflection/amplification attacks according to leading security reports. The damage is costly, and Forrester Research estimates upward of $100,000 an hour as the cost resulting from a DDoS attack, not including customer defection and damage to brands. DNS hijacking compromises the integrity of DNS and redirects users to bogus sites controlled by attackers, resulting in theft of sensitive information and loss of revenue. DNS-based attacks are also used as diversions in broader plans to steal data, a practice called “smoke screening.”
Infoblox Advanced DNS Protection provides defense against the widest range of DNS-based attacks such as DNS DDoS, exploits, NXDOMAIN, DNS tunneling and DNS hijacking attacks. Unlike approaches that rely on infrastructure over-provisioning or simple response-rate limiting, Advanced DNS Protection intelligently detects and mitigates DNS attacks while responding only to legitimate queries. Moreover, it uses Infoblox Threat Adapt™ technology to automatically update its defense against new and evolving threats as they emerge, without the need for patching.