IT disaster recovery, cloud computing and information security news

IDC survey finds that the average DNS attack cost rises 49 percent

Details
Published: Friday, 21 June 2019 09:07

The 2019 Global DNS Threat Report, conducted by IDC and sponsored by EfficientIP, states that over the past year, organizations faced on average more than nine DNS attacks, an increase of 34 percent. Costs went up 49 percent, meaning that one in five businesses lost over $1 million per attack.

Other issues highlighted by the study, now in its fifth year, include the broad range and changing popularity of attack types, ranging from volumetric to low signal, including phishing, 47 percent, malware-based attacks, 39 percent, and old-school DDoS, 30 percent.

Also highlighted were the greater consequences of not securing the DNS network layer against all possible attacks. No sector was spared, leaving organizations open to a range of advanced effects from compromised brand reputation to losing business.

Romain Fouchereau, Research Manager European Security at IDC, says “With an average cost of $1m per attack, and a constant rise in frequency, organizations just cannot afford to ignore DNS security and need to implement it as an integral part of the strategic functional area of their security posture to protect their data and services.”

Three-in-five, 63 percent, of organizations suffered application downtime, 45 percent had their websites compromised, and one-quarter, 27 percent, experienced business downtime as a direct consequence. In addition, one-quarter, 26 percent, of businesses had lost brand equity due to DNS attacks.
Data theft via DNS continues to be a problem. To protect against this, organizations are prioritizing securing network endpoints, 32 percent, and looking for better DNS traffic monitoring, 29 percent.

David Williamson, CEO of EfficientIP summarized the research “While these figures are the worst we have seen in five years of research, the good news is that the importance of DNS is at last being widely recognized by businesses. Mainstream organizations are now starting to leverage DNS as a key part of their security strategy to help with threat intelligence, policy control and automation, thus building a good foundation for their zero trust plan."

The 2019 Global DNS Threat Report 

The research was conducted by IDC from January to April 2019. The results are based on 904 respondents in three regions - North America, Europe and Asia Pacific. Respondents included CISOs, CIOs, CTOs, IT Managers, Security Managers and Network Managers.

To read the full report please click here (registration required).

 



Want news and features emailed to you?

Signup to our free newsletters and never miss a story.

Root Cause Analysis
The BIA Guide

Additional Resources

A website you can trust

The entire Continuity Central website is scanned daily by Sucuri to ensure that no malware exists within the site. This means that you can browse with complete confidence.

Business continuity?

Business continuity can be defined as 'the processes, procedures, decisions and activities to ensure that an organization can continue to function through an operational interruption'. Read more about the basics of business continuity here.

Get the latest news and information sent to you by email

Continuity Central provides a number of free newsletters which are distributed by email. To subscribe click here.