When you say ‘DNS security’, you just mean DNSSEC, right?”
This is one of the questions we hear the most and the answer to it is both simple and complex.
In a nutshell, DNSSEC is a technical best-practice in which the validity of a DNS query is ensured through cryptographic signing. DNS security, on the other hand, is the concept that the pervasive nature of the Domain Name System (DNS) can be leveraged to secure your entire network.
In the early days of the Internet, one of the most common attack methods was basic, simple brute force. Bots usually performed these attacks –or persons with plenty of time off– who tried zillions of combinations of usernames and passwords until they found one that would grant access to the target application.
Brute force attacks are no longer a threat, thanks to password policies, limited login attempts, and captchas. But cybercriminals love to discover new exploits and to use them to perform new types of attacks. Long ago, they discovered that text fields on applications or web pages could be exploited by entering –or injecting– unexpected text into them that would force the application to do something it was not supposed to do. In that way, the so-called injection attacks entered the scene.
Social Engineering has been on the front burner of security issues for a while. It has been discussed extensively by industry experts. Yet, not many fully realize the potential danger it poses and how very dangerous it can be.
For hackers, Social Engineering is probably the easiest most efficient way for cracking security protocols. The rise of the internet gave us very powerful capabilities by interconnecting devices without the barrier of distance. Giving us advancement in communication and interconnection, this, however, introduced loopholes leading to a breach of personal information and privacy.