1、State of the InternetVolume 9,Issue 1Attack SuperhighwayA Deep Dive on Malicious DNS TrafficAttack Superhighway:Volume 9,Issue 1 SOTI1Table of ContentsDomain Name Servers a highway for attack trafficAkamai DNS traffic analysis terminology Danger ahead:the pervasiveness of malicious traffic in organi

2、zationsHome users under attackPhishing landscape overviewConclusion and recommendations:combat modern attacks with proactive measuresMethodologiesCredits2462533353637Attack Superhighway:Volume 9,Issue 1 SOTI1Attack Superhighway:Volume 9,Issue 1 SOTI2Domain Name Servers a highway for attack traffic T

3、he Domain Name System(DNS)has been a critical part of internet infrastructure since its earliest days.Much of our internet usage,be it at home or at work,must be facilitated via the DNS in order for us to correctly navigate to our destination on the World Wide Web.Unsurprisingly,attackers often choo

4、se to leverage this infrastructure to facilitate their attacks whether its a threat that accesses command and control(C2)servers to await commands,or a remote code execution that reaches out to a domain in order to download malicious files onto a machine.Because of its ubiquity,DNS has become an imp

5、ortant part of the attack infrastructure.As a security company,Akamai has a vantage point that allows us to examine and protect businesses,as well as home users,against malicious DNS traffic that could lead to system compromise and stolen information.In this report,we will provide an analysis of the

6、 malicious traffic targeting home users and enterprises worldwide.A thorough analysis of malicious DNS traffic,which includes correlation to attacker groups or tools,could arm organizations with important information regarding the most prevalent threats to their organization.As such,this information