Recent research from IDC predicts worldwide spending on security-related hardware, software, and services will reach $119.9 billion in 2021. Despite the overall increase in spending (over 10% from 2017), significant breaches are reported nearly every day from trusted brands. The resulting loss and impact on companies and individuals alike are substantial, and IDC expects that lost business will become a more tangible factor over time.
Organizations must adapt and shift their defensive techniques in ways that can detect threats early and protect against data exfiltration. While many organizations utilize pattern matching and other traditional approaches to aid in detecting data theft, this control has proven to be inadequate when faced with multiple pathway scenarios used by modern attackers. This paper examines the use of Domain Name System (DNS) as one such pathway for data exfiltration and describes best approaches to protect against advanced malware and data exfiltration.
This paper looks at:
- The increased attack surface and constantly evolving attack techniques
- Visibility into new machines and services — especially difficult in virtual, cloud, and distributed environments
- Gaps in security exploited by bad actors
- Data exfiltration, security risks, compliance and how to protect your sensitive data
