User:Jose.ines/sandbox

DNS8 is a service which extends the Domain Name System (DNS) by protecting companies preventing users from accessing malicious websites and malware using this protocol to C&C (command and control).

Malware has become increasingly sophisticated and is bypassing traditional defenses. Additionally, increasing of BYOD devices and mobile users means that threats are originating within the perimeter, not just outside. DNS8 it’s a service that implement detection and protection policies to prevent malware and other types of security breach, improving response time to containment and eradication procedures. This simple approach will minimize security breach risk and improve business and critical assets overall security protection.

Using DNS Response Policy Zones (RPZs), companies can perform policies (detection and/or prevention) to reduce business impact from virus, Trojans, ransomware and other types of malware.

1. Internal user connects to a malicious web site without DNS8 service infected.

2. An infected device is brought into the office. Malware spreads to other devices on network.

3. All DNS requests and verified by DNS8 service. Using Identification and Prevention rules, service identifies security reputation for the request and costumer is redirect to a help page.

4. DNS8 Intelligence Services updates available know threats and activates rules according the best information available in each moment.

5. DNS8 can share alerts with other security solutions (like SIEM) for enhance protection and improve incident response efforts.