DNS Filtering Explained
It’s been estimated that over 90% of malicious threats use DNS to some degree. What is DNS Filtering? DNS Filtering analyzes DNS requests made on your network and takes action to allow or block such requests based on policy. It works by having a recursive DNS server with added functionality to understand configured polices, recognize […]
How We Mitigate Cache Poison Attacks Like SAD DNS
Last week a new DNS vulnerability was introduced by researchers that had affected the majority of DNS resolver software as well as most major open resolvers on the internet. As of this week, most providers have taken steps to mitigate the vulnerability. As a network security solution, any threat is a top concern to us. […]
DAAR TLD Threat Report – October 2020
It’s been a few months since we have commented on the DAAR TLD monthly threat report. It’s interesting to note that since our last update, there has been a significant increase in both overall known threats tracked by DARR, as well as the percent of threats in newer gTLDs. The Domain Abuse Activity Reporting System just released […]
5 DNS Layer Actions to Fight Malware
Proper cybersecurity begins with layers and monitoring the DNS layer will give you a better position for insuring a healthy and safe network. Here are 5 actions you can take to improve your security profile. Create Firewall Rules for Central DNS Control If your network lacks firewall rules on allowed DNS resolvers, you are allowing […]
How to Limit DNS Bypass on Unifi Gateway
Several of our small business, nonprofit, and education customers run Ubiquiti networks and so I thought it would be helpful to answer the following question using the Unifi Dream Machine Pro. “How do I prevent users from changing their DNS to bypass filtering?” While preventing content filter bypass is a good reason to manage DNS […]
DAAR TLD Threat Report – June 2020
The Domain Abuse Activity Reporting System just released its June report on Generic Top Level Domains. In it we see that security threats were reported in 349 out of the 1123 generic top level domains that DAAR received data on. There were a little over 207 Million domains within these 1123 gTLDs as of June […]
Are Search Engines Breaking your CIPA Compliance?
One of the biggest DNS filtering solution on the planet is not actually CIPA compliant on its own. Claiming to have tens of thousands of schools and being the “easiest way to achieve CIPA”, it would be critical to make sure schools get this right as their compliance is in large part tied to funding […]