How to keep bad online actors out of your network
Once upon a time, building a strong defense around a company’s perimeter was considered the best protection against cybercrime. But while that’s still important, it’s no longer enough to stop clever hackers as the perimeter blurs and organizations connect more and more of their business to the Internet.
Cybersecurity is a daily struggle for businesses. And the U.S. Director of National Intelligence Daniel R. Coats recently warned that the “potential for surprise” will continue to rise as billions of more devices are connected to the Internet with little or no security.
As the world becomes increasingly connected, a critical step in protecting data and a network is ensuring that any web or public traffic is secured and monitored. An integral component of CyberGuard360’s new CyberGlass product is its ability to stand guard, protecting organizations from malicious threats that try to slip inside as users and system access the biggest wide area network (WAN) that exists: the Internet.
An all-in-one package
CyberGlass is trailblazing a new approach to cybersecurity as the first and only platform to combine all the elements of a complete cybersecurity program into an intelligent ecosystem with game-changing management, automation, and remediation capabilities. Its unique ability to not only spot issues – but fix them – drastically decreases response times and increases kill rates by enabling responders to not waste precious time jumping in and out of different security programs. For the first time, MSPs, MSSPs, and enterprise IT teams can view an organization’s cybersecurity strength in real-time through a single pane of glass.
CyberGlass’ WAN protection involves four important elements: DNS security, Web protection, virtual private networks (VPN), and dark web monitoring. In this first installment of our two-part series on WAN protection, we explore how CyberGlass’ DNS and Web Security systems keep networks secure.
Why DNS is a top cybersecurity concern
The frequency and costs of Domain Name System (DNS) attacks are skyrocketing – pushing DNS protection to the forefront of cybersecurity concerns. DNS servers translate the easy-to-remember web address that you type into your browser – for instance, cyberguard360.com – to the machine-friendly public IP address that actually marks its location on the Internet.
Attacks like DDoS (Distributed Denial of Service) that cause failures in DNS can be crippling to an organization – leaving a business invisible and unreachable online. But DNS isn’t only a target, it’s a vector; with clever criminals using its infrastructure to enable a wealth of malicious activity, including stealing data, passing malware into DNS queries, and communicating with command and control servers.
One of the most common DNS schemes is setting up malicious phishing and spam domains that redirect a website’s inbound traffic to a fake copy of the site, pilfering sensitive user information and exposing an organization to significant liability. One of the worst of these DNS hijacking attacks led to an unprecedented case of wholesale bank fraud in 2016 when hackers redirected visitors from all 36 of a major Brazilian bank’s online properties, as well as its ATM transactions and point-of-sale systems. Login credentials to bank accounts and credit card details topped the list of sensitive information collected.
Over the last year, the average cost of a DNS attack in the U.S. has climbed 57 percent to $654,000. DNS ranked as the ninth-worst security vulnerability in existence on the SANS Top 20 Internet Security Vulnerabilities list.
CyberGlass employs Secure DNS to combat these threats. It encrypts DNS traffic so that it’s opaque to hackers, effectively preventing them from seeing where it’s going and tagging along. It also serves as an umbrella that protects against inbound traffic that might be coming from a hacked DNS.
Secure Web gateways critical to keep cybercriminals at bay
Accessing the Internet is filled with cybersecurity risks; bad actors lurk in the digital ether and layers that comprise the Web, ready to take advantage of the slightest vulnerability. Some are easy to spot, but others challenge cybersecurity defenses with ever-evolving and increasingly-sophisticated attacks.
Advancements in artificial intelligence make the bots that crawl the Web and infiltrate company networks harder to detect because they are more human-like in their behavior. Ransomware and phishing schemes bombard companies daily – the number of ransomware attacks against American businesses alone soared by 250 percent in the first quarter of 2017. Damage costs were expected to exceed $5 billion by the end of the year.
A secure Web gateway halts unsecured traffic, protecting a network from becoming infected by malicious threats that are unknowingly encountered on the internet. CyberGlass uses this security solution to monitor and prevent malicious traffic and data from entering or leaving an internal network.
Features like virus and malware detection, malicious URL filtering, application-level control, and data loss prevention (DLP) enable it to quickly spot and stop attacks that originate on websites and other Web-enabled products or services. Traffic in and out is scanned for malicious, unauthorized, or suspicious threats. Legitimate traffic passes through without incident; malicious traffic is blocked.
CyberGlass’ WAN protections work quietly in the background to protect and remediate against any potential threats before they become a disaster. By assembling best-of-breed tools into a single, actionable cybersecurity suite, it wraps a protective layer around an organization, enabling it to connect with confidence.
If you’d like to learn more about CyberGlass, we’d be happy to help. Call us at 844-315-9882 or use our contact form for a free consultation.