Key Points
- Cisco boosts DNS security with AI-powered features to combat cyber threats, including DNS tunneling and malicious domains.
- New "Cisco Secure Access – DNS Defense" replaces existing DNS packages, offering enhanced security, cloud malware detection, and seamless integration with Microsoft 365, Azure, and other cloud services.
- Easy upgrade process for existing Cisco Umbrella customers, with no network changes required, to bolster security posture against phishing, malware, and more.
Cisco Enhances DNS Security with AI-Driven Features, Strengthening Protection for Microsoft-Integrated Networks
In a significant update to its security portfolio, Cisco has unveiled Cisco Secure Access – DNS Defense, a revamped Domain Name System (DNS) security solution that leverages Artificial Intelligence (AI) to thwart advanced cyber threats. This new offering replaces the company’s current Cisco Umbrella DNS Essentials and Advantage packages, promising improved detection rates, reduced false positives, and robust protection for organizations relying on Microsoft 365, Azure, and other cloud services.
According to Steve Brunetto, Director of Product Management for Cisco Secure Access and Umbrella, the AI-enhanced DNS tunneling mitigation feature has shown an 11.1% improvement in detection rates, ensuring that suspicious activities are identified and blocked more effectively. Additionally, the solution now employs AI-powered capabilities to prevent communications with malicious domains generated by Domain Generation Algorithms (DGAs), which are commonly used in command-and-control attacks launched from compromised devices.
Protection Against Phishing, Malware, and More
Cisco Secure Access – DNS Defense provides comprehensive protection by blocking domains associated with phishing, malware, botnets, cryptomining, and other high-risk categories. It also allows for the creation of custom block and allow lists, enabling organizations to tailor their security settings to specific needs. Furthermore, the solution offers real-time security activity reports to help pinpoint compromised systems, facilitating swift action against potential breaches.
The importance of robust DNS security cannot be overstated, particularly in today’s remote work-centric and cloud-driven landscape. As Cisco emphasizes, "the growth of direct enterprise internet connections and remote work make DNS optimization for threat defense, privacy, compliance, and performance ever more critical." By integrating strong DNS-layer security, organizations can block threats before they reach the firewall, significantly reducing the alert burden on security teams and enhancing overall security posture.
Seamless Integration with Cloud Services, Including Microsoft Ecosystem
Cisco’s new DNS Defense solution seamlessly integrates with popular cloud applications, such as Microsoft 365, Google Workspace, Box, Dropbox, Webex, Google Drive, AWS S3, and Azure. Two notable features that bolster security in these cloud environments include:
- SaaS API Data Loss Prevention (DLP): Monitors and protects sensitive data within cloud applications by scanning for data exposure and enforcing compliance policies.
- Cloud Malware Detection: Automatically scans files stored in cloud services for malware, preventing malicious files from reaching endpoints and potentially compromising Windows Server environments or other critical infrastructure.
Global Infrastructure for Low-Latency Protection
Cisco’s Secure Access – DNS Defense is built on a global network of 50+ DNS data centers, ensuring low-latency, fast DNS resolution, and seamless failover. This robust infrastructure differentiates Cisco’s solution from other Secure Service Edge (SSE) offerings that may only provide basic DNS security, often as a ‘checkbox’ feature to meet market demand.
Simplified Upgrade Process for Existing Customers
Existing Cisco Umbrella DNS Essentials and Advantage customers can easily transition to the new DNS Defense solution using an upgrade manager in the administration portal. No redeployment of software or changes to network policy or configurations is required, ensuring a smooth transition with minimal disruption to daily operations. This streamlined process empowers organizations to promptly enhance their security stance, better safeguarding Microsoft-connected environments and critical assets from evolving cyber threats. As cyber threats continue to evolve, Cisco’s enhanced DNS security solution is poised to play a vital role in protecting Windows Server, Microsoft, and Azure-centric ecosystems, underscoring the company’s commitment to securing the modern, cloud-driven enterprise landscape.
Read the rest: Source Link
Don’t forget to check our list of Cheap Windows VPS Hosting providers, How to get Windows Server 2022, Try Windows 11 Pro for Workstations & browse Windows Azure content.
Remember to like our facebook and follow us on twitter @WindowsMode.
Discover more from Windows Mode
Subscribe to get the latest posts sent to your email.
