Jun 12, 2019

The dark side of the internet's phonebook

Photo: Justin Sullivan/Getty Images

According to a new report by the nonprofit Global Cyber Alliance (GCA), up to one-third of hacking between 2012 and 2017 could have been detected if businesses had used a more secure version of DNS — a service that operates behind the scenes to allow web browsers to work.

Catch up quick: DNS — A domain name service (DNS) that operates like an internet phonebook, converts domain names entered by users into internet addresses read by machines.

Details: Jay Jacobs, who headed the report, worked with the researchers behind the Verizon DBIR, a thorough compendium of breach statistics, to determine that 3,668 of the more than 11,000 data breaches on file used vectors that frequently involve the use of DNS.

  • That could mean things like malicious ads loaded from other websites, fraudulent websites or malware communicating with a host through a website.
  • Given previous research evaluating the cost of breaches cited in the GCA study, the report estimates that using a DNS that could perfectly block sites known to be malicious could have been used to detect as much as as $19 to $37 billion of malicious cyber damage in the U.S. in 2016 or $150-$200 globally in 2018.

Between the lines: DNS is not traditionally used as a security tool. "It’s not a sexy control," Jacobs told Axios.

  • Most people don't know what DNS service they use. By default, most people use ones that don't filter malicious sites.
  • But free DNS services with filters do exist — including Quad 9 — a service founded by GCA itself. Switching to one of the services is a relatively simple fix — just a settings change.
  • While they aren't perfect at detection, they are infinitely better than no detection. And as the DNS filters get better, so will detection rates
  • "Moving forward, we'll hopefully see a lot of advancement in that space," said Jacobs.

Go deeper

Updated 2 hours ago - Politics & Policy

In photos: Protesters clash with police nationwide over George Floyd

Police officers grapple with protesters in Atlanta. Photo: Elijah Nouvelage/Getty Images

Police used tear gas, rubber bullets and pepper spray as the protests sparked by the killing of George Floyd spread nationwide on Friday evening.

The big picture: Police responded in force in cities ranging from Atlanta to Des Moines, Houston to Detroit, Milwaukee to D.C. and Denver to Louisville. In Los Angeles, police declared a stretch of downtown off limits, with Oakland issuing a similar warning.

Updated 2 hours ago - Politics & Policy

Supreme Court sides with California on coronavirus worship service rules

The Supreme Court has ruled 5-4, with Chief Justice John Roberts joining the court's liberal justices, to reject a challenge to California's pandemic restrictions on worship services.

Why it matters: This is a setback for those seeking to speed the reopening of houses of worship, including President Trump.

Updated 4 hours ago - Politics & Policy

Coronavirus dashboard

Illustration: Sarah Grillo/Axios

  1. Global: Total confirmed cases as of 10 p.m. ET: 5,923,432— Total deaths: 364,836 — Total recoveries — 2,493,434Map.
  2. U.S.: Total confirmed cases as of 10 p.m. ET: 1,745,930 — Total deaths: 102,808 — Total recoveries: 406,446 — Total tested: 16,099,515Map.
  3. Public health: Hydroxychloroquine prescription fills exploded in March —How the U.S. might distribute a vaccine.
  4. 2020: North Carolina asks RNC if convention will honor Trump's wish for no masks or social distancing.
  5. Business: Fed chair Powell says coronavirus is "great increaser" of income inequality.
  6. 1 sports thing: NCAA outlines plan to get athletes back to campus.