Biz networks' DNS troubles

More than four in five (83 per cent) of enterprise networks show evidence of malicious DNS activity.

Malware such as botnets, the ZeuS banking malware, distributed denial of service (DDoS) traffic and the CryptoLocker ransomware generated malicious lookup queries picked up in a new study by DNS security specialists Infoblox.

“Almost all large enterprise networks have been compromised to a greater or lesser extent,” said Craig Sanderson, senior director of security products at Infoblox.

Tracking DNS activity offers a mechanism for enterprises to track malicious activity. DNS firewalling can be used to prevent malware inside the network from communicating with command-and-control servers, mitigating threats in the process. ®