With every new year comes New Year’s resolutions. So what changes should we commit to this year to keep our networks safe? As we look toward 2018, we also must look back on 2017, which taught us that large-scale cyber attacks are just the beginning (Think WannaCry, the Equifax breach, and the Deep Root Analytics leak). It’s safe to anticipate more of the same in the coming year; however, this isn’t a warning – it’s a wake-up call.
2018 is all about taking a fresh look at the tools in your arsenal, DNS included. Because the bottom line is that the security measures that organizations have been relying on just weren’t getting the job done.
So here are a few resolutions to keep your networks secure and free from cyber attacks in the year to come.
Start leveraging DNS.
With insider threats being a top concern among CISOs, you can count on DNS to get more credibility and visibility as a security tactic. DNS is the foundation for all network infrastructure, so it’s no wonder it’s so widely used among bad actors looking to initiate an attack. Having tools that automatically monitor bad domains and other malicious indicators according to policies that you set is an invaluable strength.
Get to know AI and machine learning.
Hotter buzzwords you will not find. While some are concerned that AI and machine learning will replace the need for human engineers, Chris Day, Chief Cyber Security Officer at Cyxtera believes that human adversaries cannot be battled with AI or machine learning alone. Only a trained human being can fully grasp the creativity and spontaneity of a human adversary. For him, artificial intelligence is about supporting his threat hunters, “augmenting human teams and helping them go through that ocean of [DNS] data.”
Stay ahead of the curve.
2018 is the year of being proactive. Enter the threat hunter. Again, Chris Day emphasizes the growing importance of this role in mitigating cyber attacks in real time. Their aim is to act before the damage is done. “Cyber threat hunting is about taking that less structured look at your network.” It’s about leveraging tools and data sources that aren’t typically part of your cyber security stack, and using them as a sensor for network activity.
Be prepared for breaches and cyber attacks.
“It’s no longer a matter of if, but when, an IT breach will occur” warns Dick Clarke, internationally recognized cyber security and counterterrorism expert and former adviser to three US Presidents. In a perfect world, you don’t need a breach plan. But our world is anything but perfect. In the event of a breach, it’s important to contain it. Having a plan in place ensures that everyone knows exactly what to do the event of a breach. A plan that accounts for everything from computer forensics, to legal, to crisis communications will help minimize damage from every angle.
Secure your IoT devices.
Your security cameras shouldn’t be leveraged as a gateway for cyber attacks. Your cell phones don’t need to be connected to any other network but your own. That being said, you need to keep track of your IoT devices and make sure they are protected. Keeping your IoT devices on a separate network and connecting them only when necessary with strong passwords are a just a few ways to keep your IoT devices’ capabilities out of the wrong hands.
While bad actors are getting smarter and more strategic, so are organizations’ cyber security teams. It’s up to the CISOs and network engineers and others on the ground alike to take a long hard look at their cyber defense weapons and mechanisms to see what’s working and what’s not… And what they should consider in the future.
Critical conversations on critical infrastructure
Find out how your peers are managing their networks through profound change. Watch this series of live interactive discussions with IT pros & join the debate in Slack.
9 tech leaders’ advice on running a technology organization (part 2)
A compilation of 8 tech leaders’ (+ BlueCat CSO Andrew Wertkin) advice on driving innovation and achieving overall success as a tech organization.
9 tech leaders’ advice on sustaining business alignment (part 1)
Now that Season 1 of the popular podcast Network Disrupted has wrapped, it’s time to parse insights from the show and share them with you.
Temporary workaround for SAD DNS
Ahead of Linux’s patch taking effect, BlueCat Labs has a temporary workaround for protecting against the revived Kaminsky DNS cache poisoning attack.
IT pros debate: Should you DIY your DDI?
Five IT pros get real about DIY vs. enterprise DNS solutions during the second Critical Conversation on Critical Infrastructure hosted in Network VIP.