CYBER Insights » THREAT INTEL: DNS-the cornerstone of Internet Navigation – Ensure security by securing DNS

THREAT INTEL: DNS-the cornerstone of Internet Navigation – Ensure security by securing DNS

Image_Dmpcreate_Pixabay_Switchboard
Image Credit: Dmpcreate/Pixabay

Gibraltar: Tuesday 25 June  2024 at 11:00 CET

THREAT INTEL: DNS-the cornerstone of Internet Navigation – Ensure security by securing DNS

By Andy Jenkinson – Guest Contributor |  Group CEO Cybersec Innovation Partners
via IainFRASER.net/CYBERInsights
First for SME Cybersecurity News
Google Indexed on 250624 at 11:30 CET

#SMECyberInsights #SMECyberNews #Cybersecurity #WhitethornShield #InternetSecurity #Cybercrime #DNS #PKI

DNS, the cornerstone of Internet navigation, has been dangerously overlooked and poorly taught, leading to an alarming rise in exploitation.

Despite CISA’s 2019 M-19-01 Emergency Directive on DNS Tampering and Abuse, it wasn’t until 17 March 2020 that the National Security Agency grasped its significance, spurred by a wave of attacks on federal agencies and the looming SolarWinds breach.

Prior to this date the National Security Agency had, like the vast majority of organizations, been exposed to DNS Tampering and Abuse along with Insecure servers.

This neglect underscores a critical lesson: securing DNS is non-negotiable for robust cybersecurity. Ignorance is a choice, and in this context, a perilous one.

Cyber adversaries exploit DNS vulnerabilities to devastating effect, infiltrating systems and compromising data. Recent experiences have underscored that while DNS may not always be the initial attack vector, its compromise can be catastrophic.

Agencies like CISA, National Security Agency, and the White House have learned that DNS security is paramount. As the adage goes, fools choose ignorance, and when it comes to DNS, such ignorance invites disaster.

AJ250624

Ensure security by securing DNS—no exceptions.

Since March 17 2020 the National Security Agency has maintained Secure DNS records and servers, they acknowledge the criticality of their servers being secure, so why don’t others?

Cybersec Innovation Partners
FBI Cyber Division
GCHQ
Information Commissioner’s Office
Serious Fraud Office (UK)
Metropolitan Police
Jisc
Synnovis
NHS
InternetSecurity
DNS
PKI

About Andy Jenkinson

Group CEO CIP. Fellow Cyber Theory Institute. Director Fintech & Cyber Security Alliance (FITCA) working with Governments. Recognised Expert in Internet Asset & DNS Vulnerabilities.

Andy Jenkinson is a senior and seasoned innovative Executive with over 30 years’ experience as a hands-on lateral thinking CEO, coach, and leader. A ‘big deal’ business accelerator, and inspirational, lateral thinker, Andy has crafted, created, and been responsible for delivering 100’s £ millions of projects within the Cyber, Technical, Risk and Compliance markets for some of the world’s largest, leading organisations. Andy has a demonstrable track record of largescale technical delivery and management within many sectors including the Professional, Managed, and Financial Services.