Busy IT Executive’s Guide to Leveraging DNS
Seasoned technology executive Mathew Chase and BlueCat’s Jim Williams discuss what separates technology leaders from their DNS and questions leaders can ask their teams to uncover gaps and opportunities in their DNS.
Key takeawaysThis key takeaway was generated through LLMs crawling the page and coming up with an overview of the content.This webinar features DNS expert Matthew Chase discussing how often-overlooked DNS data can be leveraged to improve enterprise security and visibility. Using concrete examples of well-known breaches and exploits, Chase demonstrates strategies for extracting actionable intelligence from DNS traffic to detect threats, reduce dwell time, and strengthen incident response. The talk emphasizes operational approaches for integrating DNS data into existing security workflows to achieve better visibility across the network and more effective threat mitigation.
What is the main argument Matthew Chase makes about DNS data in the webinar?
Matthew Chase argues that DNS data is a valuable but frequently overlooked source of security intelligence. He shows how analyzing DNS queries and patterns can reveal malicious activity, command-and-control communications, and indicators of compromise that other tools may miss. By using concrete examples of well-known breaches and exploits, Chase highlights how DNS-derived insights can shorten detection time, improve investigation context, and be integrated into enterprise security workflows for greater visibility and faster response.
How does Chase suggest organizations use DNS to improve incident response?
Chase recommends leveraging DNS telemetry as an early warning and investigative resource to accelerate incident response. He describes operational practices such as monitoring anomalous query patterns, correlating DNS logs with known threat indicators, and using DNS history to trace attacker activity and lateral movement. These methods provide context that helps responders prioritize alerts, reconstruct attack timelines, and take targeted containment actions, reducing dwell time and improving the effectiveness of remediation efforts.
What kinds of real-world examples does the webinar use to illustrate DNS-based security benefits?
The webinar uses concrete examples of well-known breaches and exploits to demonstrate how DNS data exposed malicious behaviors that aided detection and investigation. These case studies show scenarios where DNS queries revealed communications with command-and-control domains, data exfiltration patterns, or infrastructure used by attackers. By walking through these incidents, Chase illustrates practical techniques for extracting threat intelligence from DNS and applying it to secure the enterprise and enhance network visibility.
In this webinar, DNS expert Matthew Chase talks about the value of “forgotten” DNS data for securing your network. Using concrete examples of well-known breaches and exploits, Chase talks about strategies to leverage DNS to secure the enterprise and obtain greater visibility.