Ten years ago, the threat of a Domain Name System (DNS) compromise wasn’t that important to many businesses. Yet the digital switchover has accelerated exponentially in recent years, which has unfortunately been accompanied by a reciprocal increase in the scale and frequency of DNS-related cybercrime. How companies host, manage and protect their DNS is now integral to improving their overall digital security posture.
Only with the right domain name management strategy in place can organizations protect critical domains, associated digital services, and brand intellectual property. This should be a key part of any corporate domain name management process so that organizations protect themselves against breaches, avoid the unpleasant costs of regulatory fines, and uphold the reputation of the brand.
The challenges of cybersecurity around the DNS
Coming out of the pandemic, the online space has – and continues to transform – radically. Research shows that global cyber intrusion activity grew 125% in the first half of 2021, compared to the same period last year. * As attacks become more sophisticated and the method of attack changes frequently, it’s more important than ever that businesses protect themselves in whatever way they can.
Often when attacks do occur, it results in information security breaches, which are costly for businesses in terms of regulatory fines and increased operational compliance costs, as well as damage to the reputation of the company. the brand. For most businesses, the cost of losing key digital services for a day, hours, or even minutes is significant, affecting brand reputation, increasing costs, and resulting in lost revenue. Worse still is when companies are forced to foot the bill for hefty ransoms. In the first half of 2021, the average payment for ransomware increased by 82% to a staggering $ 570,000. **
Many domain names are still hosted on the more basic Unicast DNS, which may still be appropriate for defensive and non-operational domains. However, anything that serves critical business functions such as email, websites, or key operational or transactional processes must be protected by an enterprise solution, in order to ensure high uptime and responsiveness, and to protect them. attack vectors that include volumetric denial. service attacks, DNS hijacking, and DNS cache poisoning.
The size of the threat has now grown as businesses naturally become more security-conscious, whether through personal choice or through regulation, and this is reflected in the value and value of the global cybersecurity market, which went from just $ 3.5. billion in 2004 to 170.4 billion dollars forecast in 2022. *** The way businesses host, manage and protect their DNS is now integral to improving their overall digital security posture. This security posture will automatically fuel the brand’s reputation – the lack of strong cybersecurity alongside the growing awareness of cybercrime means that trust will be crucially maintained through how they protect their DNS.
Manage your DNS successfully
The pervasive and growing threat to businesses of all sizes from cyber criminal activity must be thwarted by the secure protection of domain names and their associated DNS hosting service. If you want to ensure uninterrupted DNS resolution of your domain names and associated digital services, and protect them from attacks, the following steps should be considered:
Use an enterprise-grade DNS platform
Using this type of platform will ensure high availability and responsiveness of domain names and protect them against attacks, including volumetric denial of service attacks, DNS hijacking, and DNS cache poisoning. Switching to this platform is quick and secure, provided you have the support of an established and experienced vendor.
Audit your domain portfolio
Evaluating your domain portfolio can be done with full visibility using an enterprise grade DNS platform. Primary and secondary domain names can be identified, and domain names that are paid for but are no longer needed can also be discarded. This will ensure that only essential areas are protected and therefore the protection is much more effective.
Centralize assets and security
Centralizing domain name and DNS asset management through a single, secure user interface and API will give businesses a clearer picture of the risk and the measures needed to protect it. The overall improvement in digital security will also provide the ability to resize wallets, ensuring proper alignment between business needs and wallet size and coverage.
The question of who buys domains, who manages them and even what records contain the domain name portfolio can be more easily managed with this centralization. It can also provide the ability to identify “crown jewel” records that require additional security measures, such as SSL protection, registry locks, and online trademark protection.
Identify gaps and fill them
By centralizing portfolios, businesses will typically identify domain names that they didn’t even know had been registered or were operational, along with associated gaps in security protection. This identification enables organizations to apply the appropriate security protection and address identified gaps.
Involve all stakeholders
Areas can usually fall into different disciplines within a business, but law / intellectual property, marketing, and IT should all be involved in the process of creating and protecting these assets, from registrations to launch. new products to online brand protection. By establishing an enterprise-wide understanding of the importance of DNS management and a coordinated approach with key stakeholders, no one is left in the dark and their management is less likely to fall between the cracks, leaving a business exposed.
Stay informed and in control
Educate yourself and your colleagues about existing cybercrime threats. The internet is dynamic and changing rapidly, with new threats emerging all the time. Working with an established vendor, staying informed, and controlling domain name security services will allow organizations to stay ahead of emerging threats.
It can be easy to overlook a company’s DNS management as it can be found between multiple business units and owners, but its importance should not be underestimated. Without domain name security and preventative measures in place, bad actors will take advantage, causing costly repercussions and inevitable damage to a company’s reputation. Organizations should make DNS management a priority by using an enterprise-grade DNS platform and working with a partner who can help them audit and protect corporate domain assets, to keep their organization safe. long term.
Gareth Jehu, Director of Global Operations, Com Laude