DNS attacks continue to pose problems

It appears that despite massive ongoing efforts and the deployment of a vast and complex range of measures many companies are still struggling to defend their Domain Name System servers from malware attacks. It seems the steady rise in phishing attacks (there was a 26% rise in the first part of 2005) allied to ever more sophisticated scams like pharming attacks continue to cause real problems for the world of network security and expose DNS insecurities.

According to a recent survey of IT and business professionals by Mazerov Research and Consulting more than half claimed to have suffered a malware attack of some sort, just less than half reported pharming or cache poisoning and a third had experienced a Denial of service attack. In fact amongst all the respondents a mere 16 % claimed never to have experienced a malware attack of some sort. Indeed, of the various types of DNS attack malware came out as the most prevalent with 68%, ahead of denial of service, 48%; cache poisoning, 36% and pharming with 23%.

The prospect of an assault on a company's DNS servers is not a threat to be taken lightly. A hacker compromised Domain Name System server could lead to a wide range of phishing or pharming attacks. Strategies used to defend DNS are numerous and can become pretty complicated. Multiple, overlapping measures are common, with the average number standing at 3.5 with the patching of operating systems emerging as the most popular option. Other means of protection might include dedicated Firewalls, DoS mitigation services, and various DNS appliances.

The study also proved quite illuminating in highlighting a disparity of opinion between IT personnel and C-level executives when it came to estimating the amount of time their company could withstand significant problems if DNS was taken out. The executive averaged 126 minutes whilst the IT people came up with a slightly less optimistic 105 minutes, although in some cases thought a mere 72 minutes would result in serious problems. The potentially damaging impact of a period of internet downtime to companies was made very clear - asked how their company would fare in the event of the internet connection being knocked out for a more significant period a rather shocking 12% thought it was extremely or somewhat likely they would completely go out of business.

Article Source: http://www.myaddirectory.com

Techworld is the UK's premiere site for IT professionals. Visit today for articles on network security and a host of other IT topics

If You want to use this article on your website then select COPY THIS ARTICLE in the Menu on the right side!

Please Rate this Article

5 out of 54 out of 53 out of 52 out of 51 out of 5 

Not yet Rated