Weibu Online OneDNS helps the real estate industry with network security

If you are the only security manager of a real estate company, and you have to manage the network security of all branches and employees across the country every day, do you often feel overwhelmed and at a loss as to where to start? Network security in the real estate industry is difficult to do, mainly for the following reasons:

1. The real estate industry is developing rapidly, with a large amount of core business data and high requirements for business continuity. At the same time, security protection technology cannot keep up, making hacker attacks more likely to succeed. Therefore, it is an industry with a high incidence of data leakage and extortion;
2. As the real estate industry becomes more internet-based and more businesses move to the cloud, real estate companies are more vulnerable to attacks, but there are fewer means of cloud protection, which invisibly increases the pressure on security personnel;
3. There are many and scattered branches, including branch offices, sales offices, construction sites, and properties. No matter how strong a fortress you build your headquarters, hackers may still be able to intrude from these places and penetrate your intranet.
4. Network threats are constantly changing. Firewalls, IDPS, and antivirus software are no longer enough. New threats such as mining Trojans and ransomware may have been lurking in your network, and you are completely unaware and can only wait for them to explode.

There are currently two main solutions: 1. Branch offices build a complete security system like the headquarters; 2. Collect all branch traffic and use the headquarters' security system.

Obviously, the construction and maintenance costs of these two methods are very high. The second method makes the physical link longer, inflexible, and affects the Internet experience. So, is there a simple and effective protection method? You can try starting with DNS.

[[422389]]

Perfect choice - lightweight DNS service

DNS (Domain Name System) is the nervous system of the Internet and a key link in the Internet infrastructure. From another perspective, DNS behavior characteristics are also the essential characteristics of malware. Cisco research reports that 91.3% of malware uses the DNS protocol to communicate with the remote end to achieve remote control end communication, steal user data, and wait for opportunities to launch attacks. At the same time, DNS traffic is a long-ignored part of enterprise security management. Network administrators usually search for a free DNS on the Internet. This type of DNS generally only serves individual users and does not have the ability to protect enterprises. Therefore, enterprises need a professional enterprise-level DNS to cover security protection blind spots and improve security capabilities.

For the real estate industry, establishing protection at the DNS level has low deployment costs and low difficulty, and does not require a large number of traffic probes. The device independence of the DNS protocol can efficiently cover all the company's networked devices, including office terminals, mobile terminals, server hosts, IoT devices, industrial control equipment, etc., regardless of their network location and operating system type. Even in blocking mode, there is no need to change the topology of the target network; low operation and maintenance costs: accurate alarms, high log readability, DNS traffic accounts for 1%-1‰ of the total traffic, but can identify more than 90% of malware communication behaviors; at the same time, combined with threat intelligence capabilities, DNS services can also effectively identify covert tunnel communications and prevent the leakage of sensitive data, realize the monitoring and interception of new attacks, and fill an important part of the company's security system construction.

Weibu Online OneDNS——Stable and efficient, monitoring + defense in one go

As the first threat intelligence SaaS gateway in China, OneDNS can ensure that any terminal in any office workplace can safely access the Internet, and is the first line of defense for enterprises to access the Internet safely. Its protection principle is to replace the original Internet recursive DNS of the enterprise or terminal, and use the Weibu online cloud threat intelligence library to synchronize and block in real time. While OneDNS can stably and efficiently resolve the DNS of the enterprise, it can identify advanced threats worldwide and intercept domain names that hit threat intelligence, effectively protecting against malware, ransomware, APT attacks, phishing links, illegal sites and other threats, with an intelligence accuracy of up to 99.99%. Since 2013, OneDNS has stably served nearly 10 million terminals, processed hundreds of millions of resolutions every day, and has been 100% stable and without downtime, helping to improve the efficiency of security operation and maintenance in the real estate industry.

So what are the unique advantages of OneDNS?

The first is "real-time monitoring + intelligent interception". OneDNS can not only detect and protect against a variety of new threats including ransomware and APT attacks, but more importantly, through OneDNS's "VA virtual forwarder", it can accurately locate the alarm IP and block illegal domain name access in real time.

The second is to achieve visual monitoring and security concentration of branches by the headquarters. One OneDNS account controls multiple branches, and the headquarters can view and manage them uniformly on the console, which is a powerful tool for unified management of large-scale group enterprises.

The third is stable and efficient resolution capabilities, with multiple sets of main nodes, 80+ acceleration nodes across the country, and three major operators, multiple secondary operators, and education networks throughout the country's DNS resolution network, all of which enable automatic backup switching at the same time, ensuring overall Internet access stability.

Fourth, it is lightweight and asset-light, with low construction and operation costs, flexible strategies, and supports one-click configuration of thousands of terminals, which takes effect in seconds; it automatically adjusts the system DNS configuration to ensure that employee devices can safely access the OneDNS protection system at any time and any place.

Let the facts speak for themselves - OneDNS implementation results at a glance

Let’s take the implementation process of a real estate company as an example to see the actual effect of OneDNS!

After deploying OneDNS, the real estate company discovered that at least four types of Trojans, such as Fareit Trojan and AsyncRAT Trojan, had been lurking in its office network. These Trojans can gain control of the host and steal personal sensitive information such as user accounts and passwords. Some Trojans will connect back to the mining pool, causing a large amount of server performance to be consumed. In addition, some Trojans can erase their own download and installation traces, which are extremely hidden and difficult to detect with traditional protection methods. The existence of these network threats has already planted huge hidden dangers for the group's network.

In view of the SD-WAN security environment of the real estate company, OneDNS has certain integration capabilities and complements terminal antivirus software to effectively realize the access of OneDNS and the location of threat terminals after access. OneDNS intercepted malicious remote control addresses 233 times and effectively blocked the external connection behavior of Trojans. At the same time, OneDNS achieved accurate positioning of the alarm IP through its own unique "VA virtual forwarder", which greatly facilitated the security personnel of the real estate company to carry out subsequent disposal work. At the same time, the Weibu Online team can ensure timely response, issue relevant reports and disposal opinions on related Trojan and worm incidents, and ensure customer network security. The following figure is an overview of threats after a real estate company accesses OneDNS.

As a SaaS security gateway, OneDNS relies on the threat intelligence of Weibu Cloud to accurately identify malware, phishing, mining, and botnets, and perform secondary reinforcement to effectively block attacks on the intranet and data theft by internal infected hosts + Internet behavior management, providing stable and efficient DNS resolution services. In the real estate industry, it has many customers such as Xuhui Real Estate, Bozhilin, Hongyang Real Estate, and China Overseas Real Estate. Other industries cover Guotai Junan Securities, China National Tobacco Corporation Shandong Branch, China CITIC Bank Corporation, China Export & Credit Insurance Corporation, Gree Electric Appliances, By-Health, Lei Shing Hong Machinery and many other industry-leading customers. OneDNS is becoming the inevitable choice for lightweight security protection in various industries.