How to secure your DNS traffic under Windows

DNS traffic is prone to snooping, and it’s often far too easy for attackers to hijack and change a company’s DNS settings. These simple steps will amp up your DNS protection.

browser security

Domain Name System (DNS) is such a foundational function in Windows it is too often taken for granted. Think about ways to protect your firm’s DNS traffic both in terms of how attackers can impact your custom domain settings as well as protecting your workstations and providing more privacy. 

For example, I recently wanted to change a DNS setting in a network that I was managing. Since I hadn’t logged into the hosting company’s DNS manager for a long time, I couldn’t remember the password, nor where to log in to manage the settings. The account was so old that the password was set by the hosting company.

Make it harder to fraudulently hijack DNS settings

This got me thinking about how easy it is to change DNS settings merely by logging into the hosting console. Hosting companies now require additional processes and procedures to confirm ownership of a domain, but DNS records have been changed merely with a phone call to a hosting company. DNS hijacking is not unusual nor unique.

To continue reading this article register now

Make your voice heard. Share your experience in CSO's Security Priorities Study.