DNS, DHCP & IP Address Management appliances
For Microsoft DNS & DHCP servers
For open source DNS & DHCP servers
Cloud-based visualization of analytics across DDI architecture
Manage multi-vendor cloud DNS servers centrally
RIR Declaration Management and Automation
Automated network device configuration and management
Centralized visibility over all your clouds
A single source of truth for your network automation
Why DDI is an Obvious Starting Point
DNS Threat Intelligence for proactive defense
Intelligence Insights for Threat Detection and Investigation
Adaptive DNS security for service continuity and data protection
Improve Application Access Control to prevent spread of attacks
Protect users and block DNS-based malware activity
Carrier-grade DNS DDoS attack protection
Optimize application delivery performance from the edge
for Proactive Network Security
Visibility, analytics and micro segmentation for effective Zero Trust strategy
Enable work from anywhere by controlling access, security and data privacy
Simplify management and control costs across AWS, Azure and GCP environments
Risk-free migration to reduce DDI complexity and cost
Move risk-free to improve performance, security and costs
Automate management, unify control and strengthen security of connected devices
Protect your network against all DNS attacks, data exfiltration and ransomware
Enable zero touch operations for network management and security
Improve resiliency, deployment velocity and user experience for SD-WAN projects
Integrated DNS, DHCP, IPAM services to simplify, automate and secure your network.
Simplify design, deployment and management of critical DDI services for telcos
Optimize administration and security of critical DDI services for healthcare
Simplify and automate management of critical DDI services for finance
Simplify and automate management of critical DDI services for higher education
Simplify and automate management of critical DDI services for retail
Simplify Management and Automation for Network Operations Teams
Open architecture for DDI integration
Technology partnerships for network security & management ecosystems
Extend security perimeters and strengthen network defenses
Submit requests for temporary licenses
Submit access requests for EfficientIP knowledge platforms
Submit membership requests for EfficientIP Community
Strengthen Your Network Protection with Smart DNS Security
Customer-centric DDI project delivery and training
Acquire the skills needed to manage EfficientIP SOLIDserver™
Identify vulnerabilities with an assessment of your DNS traffic
Test your protection against data breaches via DNS
Dedicated representation for your organization inside EfficientIP
Explore content which helps manage and automate your network and cloud operations
Read content which strengthens protection of your network, apps, users and data
Learn how to enhance your app delivery performance to improve resilience and UX
Why Using DNS Allow Lists is a No-Brainer
This enterprise-grade cloud platform allows you to improve visibility, enhance operational efficiency, and optimize network performance effortlessly.
Who we are and what we do
Meet the team of leaders guiding our global growth
Technology partnerships for network security and management ecosystems
Discover the benefits of the SmartPartner global channel program
Become a part of the innovation
The latest updates, release information, and global events
February 14, 2018 | Written by: EfficientIP | DNS Security, GDPR
ComplianceData exfiltrationData protectionDNSDNS AttackGDPRMalwareRansomware
February is the month of love and this year, businesses have the best opportunity to show customers that they care about them. On the back of multiple, large-scale data breaches in 2017 and in the lead-up to GDPR in May 2018, data protection is a growing public concern.
Despite the portrayed doom and gloom in the news about GDPR, the new regulation will help organizations gain more respect from their customers by protecting their data from potential breaches, often accomplished by hackers targeting the Domain Name System (DNS).
It typically takes 99 days before a data breach is detected. This means organizations have until February 15th, exactly 100 days before May 25th, to ensure they are GDPR compliant. We are calling 15th February 2018 X-Day, short for data exfiltration day.
Businesses currently preparing and adhering to GDPR demands know it brings brand loyalty and commercial benefits. Ultimately, your customers will likely stay in love with you if you treat their data right. With limited time until the deadline, it is time for businesses to fall in love with data protection.
At times, due to added responsibilities and reduced time to delivery, businesses find compliance hard to love. You may have read some non-EU companies are delaying plans to comply to GDPR in case the rules are not enforced in their own country, reasoning GDPR will not affect them outside the EU or are in the process of leaving the EU. This is a risky and often false assumption. Cheating in love and in data protection will inevitably end in defeat.
The regulation has been framed around the location of data subject, rather than who is the data controller or processor, meaning this regulationhas global impact if a non-EU registered business handles the personal information of EU citizens. Moreover, February 15th (X-Day) is the important milestone for organizations to be GDPR compliant – sooner than businesses may have originally thought.
Instead of focusing on fines, loss of customers and operating licences, it’s 100 days where organizational culture can change for the positive if they understand what the benefits are. For some organizations who serve fickle customers seeking ever cheaper deals such as retail and telecoms, trust is the key factor when it comes to protecting customer data. This loss of trust, was evident with the breaches at TalkTalk and Target.
Alongside trust, brands consider ‘customer stickiness’, and how loyal customers could be. In banking and healthcare, stickiness can be the difference between using data appropriately to show the real value of offerings and thus creating upsell opportunities, or continuing to flounder and not getting the best out of the data and GDPR.
Data, and the movement of it, underpins most business operations. This means trust in organizations is tied to the reliability and robustness of technology. A popular and relatively easy way for hackers to steal data is through data exfiltration by attacking the DNS server, which cannot be effectively protected by firewalls alone.
GDPR requires notification to local data authorities within 72 hours of a data breach. At the moment, we’re at the tip of the iceberg when it comes to reporting risks to customer data, as only a few companies are reporting. According to our 2017 research, one-in-five (22%) of 1,000 businesses surveyed admitted to data loss following a DNS attack. This year, every single attack will have to be reported to the regulator if personal data has been taken. Sometimes love requires complete transparency to increase trust, and notifying customers early of any breach, regardless of scale or gravity, is certainly one way to prove your intentions.
The number of unreported attacks last year proves that legacy breach prevention technology, such as firewalls, are often blind to data exfiltration. One area to protect is the Domain Name System, as over 90% of current malware uses DNS. This means DNS is an easy vector for hackers because it’s an area sometimes ignored by security or network teams. That is why the WannaCry and Petya ransomware attacks were successful in targeting unpatched systems. Hackers can still exfiltrate data completely undetected.
By first understanding how data can be accessed via DNS, businesses can better prevent more attacks from happening this year and remain compliant to data regulations like GDPR.
The introduction of GDPR in May will be a major driving force for businesses to take greater care in safeguarding customers’ data. In order to not only avoid heavy fines, but also strengthen brand reputation and customer loyalty, organizations should look to immediately fortify their data protection strategies. If not already addressed, now is the time for businesses to protect themselves and their customers ahead of the regulatory deadline.
There’s still room for vast improvement for businesses with 100 days to go, but customers are already loving the new regulation as it will protect more of what is precious to them: their data. It’s time businesses do the same and “swipe right” for GDPR, to fully commit to data protection.
When our goal is to help companies face the challenges of modern infrastructures and digital transformation, actions speak louder than words.
Explore content highlighting the value EfficientIP solutions bring to your network
To provide the best experiences, we and our partners use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us and our partners to process personal data such as browsing behavior or unique IDs on this site and show (non-) personalized ads. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Click below to consent to the above or make granular choices. Your choices will be applied to this site only. You can change your settings at any time, including withdrawing your consent, by using the toggles on the Cookie Policy, or by clicking on the manage consent button at the bottom of the screen.
We use cookies to enhance your browsing experience, serve personalized content, and analyze our traffic. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site.