New Tool Shields Organizations From NXDOMAIN Attacks

New Tool Shields Organizations From NXDOMAIN Attacks

April 12, 2024 at 04:41PM

Organizations face a growing threat from DNS attacks, especially NXDOMAIN attacks. Akamai’s Shield NS53 provides new defense capabilities, extending its Edge DNS technology to on-premises deployments. With NXDOMAIN attacks on the rise, it’s crucial for organizations to reinforce their DNS defenses. This is a pivotal part of a comprehensive DDoS prevention strategy.

From the meeting notes, we can summarize that attacks against the Domain Name System (DNS) are a significant threat to organizations and are becoming more sophisticated, with NXDOMAIN attacks on the rise. To counter this, organizations are advised to strengthen their DNS defenses using a layered approach that includes traffic monitoring, threat intelligence, and advanced network firewalls.

The introduction of Shield NS53 by Akamai has expanded the range of DNS tools available to organizations to defend against NXDOMAIN attacks. This new service extends Akamai’s Edge DNS technologies to on-premises deployments.

NXDOMAIN attacks overwhelm DNS servers with a high volume of requests for nonexistent or invalid domains and subdomains, leading to a depletion of server resources and potential disruption of legitimate requests. Such attacks can result in lost customers, revenue, and reputational damage.

To enhance DNS protection, organizations are encouraged to gain a comprehensive understanding of their DNS environment and to integrate DNS defenses into a broader distributed denial-of-service (DDoS) prevention strategy. It’s noted that nearly two-thirds of DDoS attacks last year involved some form of DNS exploits.

When evaluating potential solutions, security managers should carefully consider the scope and limitations of the offerings, particularly in relation to protecting against DNS exploits. They should also consider tying DNS defenses into robust threat intelligence services offered by vendors like Akamai, Amazon Web Services, Netscout, Palo Alto, and Infoblox.

Additionally, the Cybersecurity and Infrastructure Security Agency recommends specific actions to enhance DNS security, such as implementing multifactor authentication for DNS administrators and monitoring certificate logs for any anomalies.

Full Article