Skip to content

Why Next-Generation Firewalls Can’t Detect Stealth DNS Attacks

This article discusses a significant security gap in modern network defenses: the inability of Next-Generation Firewalls (NGFWs) to detect highly evasive DNS-based attacks. While NGFWs are effective against many threats, they are often blind to malicious activity hidden within DNS traffic, leaving a critical vulnerability that cybercriminals are actively exploiting.

The Evasion Tactic: How Attackers Use DNS

Attackers use a technique called DNS tunneling to create a covert communication channel. They encode malicious traffic—such as command-and-control (C2) signals or data exfiltration—within standard DNS queries and responses. Because DNS is an essential part of network communication and is often considered a “trusted” protocol, NGFWs and other security tools frequently allow this traffic to pass through uninspected. This provides a perfect, low-detection pathway for a stealth attack.

Why NGFWs Fall Short

Next-Generation Firewalls excel at inspecting the content of data packets, but they often struggle with DNS traffic for several reasons: they typically only inspect DNS requests, not the full response; they cannot analyze the deep-level content of a query to detect malicious payloads; and they are not designed to identify the behavioral patterns of DNS tunneling, which involves an unusually high volume of DNS requests to a single domain.

Closing the Security Gap

To combat this threat, the article recommends a multi-layered security approach. This includes implementing a dedicated DNS security solution that is designed specifically to analyze DNS queries and responses in real-time. These specialized tools can perform deep packet inspection, apply behavioral analysis to detect DNS tunneling, and block malicious traffic before it reaches the network. By adding a dedicated DNS security layer, organizations can effectively close the gap that NGFWs leave open and create a more resilient defense against advanced cyberattacks.

About SafeDNS
SafeDNS breathes to make the internet safer for people all over the world with solutions ranging from AI & ML-powered web filtering, cybersecurity to threat intelligence. Moreover, we strive to create the next generation of safer and more affordable web filtering products. Endlessly working to improve our users’ online protection, SafeDNS has also launched an innovative system powered by continuous machine learning and user behavior analytics to detect botnets and malicious websites.

About Version 2 Digital

Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.

Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

Portnox and SentinelOne Partner for Real-Time Access Control

This article announces the strategic integration between Portnox, a leader in Cloud-Native Access Control, and SentinelOne, a prominent cybersecurity platform company. The new partnership aims to provide organizations with a unified and autonomous security solution that ensures real-time access control for all managed and unmanaged devices across the network.

How the Integration Works

The collaboration combines Portnox’s advanced cloud-native network access control (NAC) with SentinelOne’s Singularity™ XDR platform. This allows organizations to automate security policies based on device posture. When a device attempts to connect to the network, the Portnox NAC solution queries SentinelOne in real-time for its security status. If the device is found to be compromised, Portnox can automatically block or quarantine it, preventing the threat from spreading across the network. This automated, real-time response helps to fortify an organization’s security posture and provides a seamless layer of defense against a wide range of cyber threats.

Key Benefits for Businesses

The integration offers several key benefits, including enhanced security, improved visibility, and streamlined operations. By automating the process of threat detection and response, the solution reduces the burden on IT and security teams. It provides comprehensive visibility into all devices on the network, enabling organizations to enforce consistent security policies and ensure compliance. The proactive nature of the integration allows businesses to respond to threats in real-time, minimizing the risk of data breaches and other security incidents.

About Portnox
Portnox provides simple-to-deploy, operate and maintain network access control, security and visibility solutions. Portnox software can be deployed on-premises, as a cloud-delivered service, or in hybrid mode. It is agentless and vendor-agnostic, allowing organizations to maximize their existing network and cybersecurity investments. Hundreds of enterprises around the world rely on Portnox for network visibility, cybersecurity policy enforcement and regulatory compliance. The company has been recognized for its innovations by Info Security Products Guide, Cyber Security Excellence Awards, IoT Innovator Awards, Computing Security Awards, Best of Interop ITX and Cyber Defense Magazine. Portnox has offices in the U.S., Europe and Asia. For information visit http://www.portnox.com, and follow us on Twitter and LinkedIn.。

About Version 2 Digital

Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.

Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

Top 5 Christmas Gift Ideas for Employees

Finding the perfect Christmas gift for employees can be a challenge. The best gifts show genuine appreciation, recognize individual contributions, and make people feel valued beyond their professional role. This guide outlines five thoughtful gift ideas that can strengthen team morale and build lasting goodwill.

Gift Ideas That Go Beyond the Office

  • 1. Experiences and Classes:

    Instead of a physical item, consider a gift that offers personal growth or a memorable experience. Options like a cooking class, a weekend getaway, or tickets to a concert can provide a much-needed break and create lasting memories.

  • 2. Tech Gadgets:

    Practical and universally useful, tech gifts are always a hit. High-quality headphones for remote work, a smart home device, or a portable power bank are great choices that can make daily life easier and more efficient.

  • 3. Wellness and Self-Care:

    Show your commitment to employee well-being with gifts focused on relaxation and health. A gym membership, a voucher for a massage, or a subscription box filled with healthy snacks are excellent ways to encourage a balanced lifestyle.

  • 4. Charitable Donations:

    For a truly meaningful gift, you can make a donation to a charity on behalf of your employee. This allows them to support a cause they care about, turning a simple gift into an act of kindness and shared values.

  • 5. Personalized Gifts:

    A gift that is specifically tailored to an individual shows you pay attention to who they are. Custom gift baskets based on their hobbies, an engraved pen, or a personalized coffee mug can make the gift feel unique and special.

The most important aspect of any corporate gift is the thought behind it. These ideas prioritize a personal touch over a generic handout, helping you build a positive and supportive workplace culture.

About NordPass
NordPass is developed by Nord Security, a company leading the global market of cybersecurity products.

The web has become a chaotic space where safety and trust have been compromised by cybercrime and data protection issues. Therefore, our team has a global mission to shape a more trusted and peaceful online future for people everywhere.

About Version 2 Digital

Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.

Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

What are Managed Cybersecurity Services?

Managed cybersecurity services provide a professional, outsourced solution to protect a business from digital threats. Instead of building an internal security team, an organization partners with a Managed Security Service Provider (MSSP) that acts as a dedicated security squad. This allows a company’s internal team to focus on their core business while experts handle security threats, monitor networks, and ensure compliance around the clock.

Key Types of Services Offered

A comprehensive managed cybersecurity provider offers a suite of services that work together to create a multi-layered defense. The most common services include:

  • Threat Detection & Response: Continuous monitoring of a network for suspicious activity and swift incident response to minimize damage. This includes endpoint protection and vulnerability management.
  • Cloud Security: Protecting data, infrastructure, and applications in the cloud by setting up security rules and monitoring for unauthorized access.
  • Network Protection: Managing firewalls, intrusion detection/prevention systems (IDS/IPS), and traffic monitoring to secure the network’s perimeter.
  • Data & Compliance: Helping businesses meet regulatory requirements like HIPAA, PCI-DSS, and GDPR by ensuring sensitive data is encrypted, backed up, and logged for audits.
  • Security Awareness Training: Providing training to employees to help them recognize threats like phishing, as human error remains a top cause of security breaches.

Why Choose a Managed Service Provider?

Proactive security is far more effective than a reactive approach. Partnering with an MSSP offers significant benefits for any business:

  • Access to Expertise: Gain access to a team of specialized cybersecurity experts without the high cost of hiring them in-house.
  • Faster Threat Response: MSSPs provide 24/7 monitoring, enabling immediate incident response and drastically reducing the window of opportunity for attackers.
  • Scalability and Flexibility: A managed solution can easily scale with your business’s growth, adding new protections as needed without the complexities of building an internal team.
  • Peace of Mind: Your internal team can focus on core business tasks while a trusted third party handles routine security checks and threat monitoring.
  • All-in-One Coverage: Many providers offer an integrated solution that covers multiple security fronts, simplifying management and improving coordination during a crisis.

Choosing the Right Provider

When selecting an MSSP, it’s crucial to consider more than just technical capability. Look for a provider that demonstrates a commitment to trust and transparency. Key factors to consider include:

  • Proactive Threat Hunting: The best providers go beyond simply responding to alerts; they actively search for vulnerabilities.
  • Strong Incident Response: Inquire about their step-by-step plan and response times for handling a security emergency.
  • Wide Range of Services: A single provider covering multiple areas like endpoint protection, cloud security, and threat intelligence simplifies your security stack.
  • Proven Experience: Look for case studies and testimonials from companies in your industry to ensure they understand your specific needs.
  • Clear Communication: Choose a provider that can explain complex threats in plain English and provides transparent security reports and logs.
  • Scalable Program: Ensure their service can adapt and grow with your business without significant disruption.

About NordLayer
NordLayer is an adaptive network access security solution for modern businesses – from the world’s most trusted cybersecurity brand, Nord Security.

The web has become a chaotic space where safety and trust have been compromised by cybercrime and data protection issues. Therefore, our team has a global mission to shape a more trusted and peaceful online future for people everywhere.

About Version 2 Digital

Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.

Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

ESET named a Strong Performer in independent evaluation of MDR services in Europe

BRATISLAVASeptember 4, 2025 — ESET, a global leader in cybersecurity, has been named a Strong Performer in The Forrester Wave™: Managed Detection And Response Services In Europe, Q3 2025. ESET believes this recognition underscores the strength of its ESET PROTECT Platform, which powers its Managed Detection and Response (MDR) services by combining regional threat intelligence with extended detection and response (XDR) capabilities.

According to the report,1 “ESET leverages its Central and Eastern European presence to source highly localized threat intelligence to deliver MDR services. ESET has maintained trust by focusing on endpoint maturity and regional compliance, including dedicated EU tenancy and sovereign operations. Reference customers highlighted ESET’s transparency and hands-on support, noting local language capabilities and threat advisories as positive traits. Organizations with a significant endpoint landscape looking for strong regional threat intelligence should consider ESET.”

In line with Forrester’s focus on sovereignty, speed, and response maturity, ESET’s strategy highlights its strength in localized threat intelligence and commitment to EU regulatory compliance. Built on a robust foundation in endpoint security, ESET is further distinguished by its transparency, hands-on support, and deep regional presence.

“We are proud to be recognized a Strong Performer in Forrester’s evaluation of MDR services in Europe,” said Michal Jankech, Vice President, Enterprise & SMB/MSP, at ESET. “For us, this acknowledgment reflects our commitment to delivering high-quality, regionally attuned cybersecurity services that meet the evolving needs of European organizations. Our ESET PROTECT Platform continues to evolve, combining deep endpoint expertise with extended detection and response to help customers stay resilient in the face of complex threats. We remain dedicated to continuous innovation and progress, with a clear focus on further enhancing our MDR capabilities to meet future challenges.”

European CISOs increasingly rely on MDR providers not only for faster threat detection but also to maintain operational resilience amid regulatory, economic, and cybersecurity challenges. With mandates such as NIS2 and DORA, and a growing shortage of skilled professionals, MDR services must offer localized support, mature response capabilities, and compliance-driven data sovereignty.

ESET believes this recognition validates its strategic focus on regional threat visibility, trusted support, and compliance-first MDR delivery — all essential for organizations navigating today’s regulatory and threat landscape.

1The Forrester Wave™: Managed Detection And Response Services In Europe, Q3 2025. Tope Olufon with Jinan Budge, Angela Lozada, Bill Nagel. September 3, 2025

Discover more about ESET MDR services and our XDR-enabling solution.

Find out how ESET helps businesses comply with cyber insurance and regulations.

Forrester does not endorse any company, product, brand, or service included in its research publications and does not advise any person to select the products or services of any company or brand based on the ratings included in such publications. Information is based on the best available resources. Opinions reflect judgment at the time and are subject to change. For more information, read about Forrester’s objectivity here.

 

About ESET
For 30 years, ESET® has been developing industry-leading IT security software and services for businesses and consumers worldwide. With solutions ranging from endpoint security to encryption and two-factor authentication, ESET’s high-performing, easy-to-use products give individuals and businesses the peace of mind to enjoy the full potential of their technology. ESET unobtrusively protects and monitors 24/7, updating defenses in real time to keep users safe and businesses running without interruption. Evolving threats require an evolving IT security company. Backed by R&D facilities worldwide, ESET became the first IT security company to earn 100 Virus Bulletin VB100 awards, identifying every single “in-the-wild” malware without interruption since 2003.

About Version 2 Digital

Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.

Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

×

Hello!

Click one of our contacts below to chat on WhatsApp

Social Chat is free, download and try it now here!

×