HOME USERS

A: Sure, we offer two plans for home use: Safe Home and Safe Family. Both plans provide you with the possibility to use the service for an unlimited number of users, have access to Wi-Fi router filtering support, and receive internet usage statistics. Also, both plans guarantee 24/7 support.

A: Force Safe Search is an additional option available on home plans. It can be turned on in the following way: Settings > Advanced. With this option enabled, all requests to Google or other search engines will be forced to use the Safe Search filter.

A: Yes, sure! Just choose which category exactly you want to block in the Categories section. Also, you can restrict access to all the domains associated with a specific service in the App Blocker section with a single click.

A: The Safe Home plan will be quite enough for you to filter inappropriate content. Safe Family will suit you as well, it offers a few more features: Agent support; the App Blocker Feature, which allows you to block a certain app or ecosystem without blocking the whole category; and the Internet Schedule, which helps you to flexibly manage Internet access depending on the time.

A: The first option here is to add the domains of a needed service to the Allowlist, which is on the main menu. But if we talk about this particular case, you should know that Amazon Alexa is categorized as Computers & Internet (which can be found in the General Sites section). You can keep this category unblocked to always have access to the service.

The Elusive Nature of 1xBet

Blocking 1xBet is quite a difficult task since the platform operates in a unique way, adapting its functionality based on various factors, including user location and app version. This adaptability makes it challenging to employ traditional blocking mechanisms, requiring a more sophisticated approach. 

Log Analysis

Our team analyzed the logs to identify the domains the app accesses. The impressive part of the way the platform works is its ability to bypass domain blocking. When certain domains or even lists of domains are blocked, the 1xBet app resumes its operation within minutes. It either gets new sources during updates or requests domains from specific sources.

Location-Based Adaptability

The app’s behavior is also influenced by the user’s location. By checking the device’s location, 1xBet selects the appropriate display language. We must say that changing the language doesn’t significantly affect the domains the app accesses. In cases where the device’s location differs from the Geo IP-based one, the app requests permission to access data from Geo IP or GPS, and depending on the location, it accesses different domain names.

Domain Generation Algorithm

During research, it was discovered that all identified domains constantly change depending on the app version and are generated using a domain generation algorithm. Besides, similar or previously used domains were found to be utilized by other apps that resemble or relate to 1xBet.

SafeDNS’s Proactive Approach

We are also actively researching the ways used by the service to bypass blocking mechanisms. This is done as a proactive measure to stay ahead and anticipate any changes made to the app’s mechanisms. It’s important to mention that since the service generates many different domains in various regions to prevent blocking, not every filtering service can recognize and classify these newly created domains as gambling. However, SafeDNS is different. Our technology, powered by AI and machine learning, is capable of instantly identifying and blocking these types of sources.

If you have any questions or require assistance regarding the blocking of 1xBet, our team is always ready to help.

Stay protected with SafeDNS!

We are thrilled to launch an exclusive Q&A session with SafeDNS experts Tom Hall and Alex Biushkin. Your questions, our expert answers—let’s explore the SafeDNS products and updates together!

Here is the first part of our Q&A session. Follow us so that you do not miss further ones.

BUSINESS

A: We offer a 15-day trial plan for business users. Within 15 days, you can test if our service meets your needs. Here is the registration link. Do not forget to choose your billing plan!

A: There are Basic, Pro, and Pro+ plans. If you choose to pay for a subscription monthly, you will pay $1 per user on Basic, $1.8 per user on Pro, and $2.5 per user on the Pro+ plan. If you are going to pay for a subscription annually, it will benefit you for sure. This way, you will pay $0.9 per user on Basic, $1.5 per user on Pro, and $2.2 per user on the Pro+ plan. You can always visit our website or contact the sales department via the email address sales@safedns.com to get more detailed information.

A: You can register and choose a home plan and after that we will be able to update your billing plan manually. Or you can reach out to our sales department directly using the following email address sales@safedns.com, they will help you to solve the problem.

EDUCATION

A: We have Education & Non-profit plan that is used by schools, colleges, universities, and other nonprofit organizations. It can serve more than 100 users per location. It is possible to add 500 domains to the Allow/Deny lists separately and either completely restrict or allow free access to this or that resource.  You can rely on your administrator privileges and priority phone support option. Also, remember that the SafeDNS Agent app can be installed on your iPads. This plan will cost you 400 USD.

A: If you are interested in our services, let me explain a bit about how SafeDNS works.

SafeDNS is a web filter based on DNS technology. Using SafeDNS, you will be able to block individual websites (domains) and certain categories of websites, enable Safe Search for Google and Bing, as well as the Restricted mode for YouTube. It is possible to use the service in a few different ways: it can be set up on your router to filter the whole network, and/or you can install the SafeDNS Agent to filter individual devices. The agent is available for Windows, Linux, MacOS, and Android systems. iOS Agent is coming soon. You can set up our service on the router, and you will get the filter on all the connected devices automatically. Alternatively, you can install the SafeDNS agent on each device. This way, devices have different filtering policies at the same time. The agent can also work together with the router setup, so devices with the agent can get traffic that is filtered according to different policies.

We have several plans that meet any user’s needs. For instance, our Education & Nonprofit Plan can be relevant for you.

A: On the Education & Nonprofit Plan, you can have a minimum of 100 users per location.

ISPs

A: SafeDNS ISP Filter is an internet traffic filtering system developed by SafeDNS. The service can restrict access to specific URLs, domain names, or IP addresses. There is an opportunity to create your own filtering rules using the command-line tools (Filter-CTL Filter) or the web interface. The system includes the SafeDNS ISP Filter Check utility, which allows you to check the quality of the filter on your own.
Here are useful links for guides about ISP description and installation.

SECURITY

A: Our DNS servers are protected from such cyberattacks as DNS cache poisoning. We can guarantee that our servers will always respond with the correct information to your requests. However, DNS traffic from a customer to our servers is not encrypted by default, so a MITM attack may occur. If you need to protect your DNS traffic, you can use our feature named DoT (DNS over TLS). Here you can take a look at the detailed guide on how to encrypt your DNS requests with the SafeDNS web filtering solution.

Understanding the evolving digital problems landscape and taking preventative measures such as content filtering is paramount to protecting businesses from potentially catastrophic outcomes.

The Allure of Hospitality for Hackers

Hospitality organizations store a lot of valuable information, making them attractive targets for cybercriminals. Installing malware on POS systems allows hackers to steal customers’ credit card information, causing significant reputational and financial damage to businesses. Moreover, the growing trend of ransomware attacks, where hackers paralyze systems and demand large ransoms for restoration, can result in million-dollar losses and occupancy declines of 80–90%.

Alarming Statistics: A Wake-Up Call for the Hospitality Industry

Recent research emphasizes the severity of the issue, revealing that 67% of accommodation and food businesses have fallen victim to cyberattacks. This places the industry in third place, behind only the education and arts, entertainment, and recreation sectors. Despite this alarming statistic, many businesses focus their investments on only traditional security systems and practices, often overlooking the critical human factor.

The Human Element: A Vulnerability Exploited

Latest ransomware attacks on the HoReCa sector (е.g., MGM and Caesar cases) emphasize that people might be the weakest link in the cybersecurity chain. Hackers can identify, for instance, a random tech employee of the target company and here we are: within 10-15 minutes they get access to the systems. The simplicity of many attacks usually relies on such tactics as tricking people into clicking on suspicious links and inputting credentials. This is reason enough to reflect on the critical need for employee training and measures that can prevent users from accessing potentially malicious resources.

Battles Against Explicit Content

Apart from cyberattacks, the restaurant and hospitality industry frequently faces a distinct online challenge — the potential for reputational harm in case guests encounter explicit content during their stay. Given that hotels and restaurants are typically chosen as venues for family outings or holidays, the expectation is that their networks should remain free from inappropriate content.

SafeDNS: Elevating Cybersecurity for Hospitality

Discover SafeDNS, a security beacon in the ever-changing digital landscape. The cloud web filtering solution offered by SafeDNS provides a multifaceted approach to cybersecurity, addressing challenges faced by hotels and restaurants. Besides, our web filtering assists the HoReCa sector in creating a safe environment free of inappropriate content, so that neither guests nor their children encounter anything disturbing while browsing the Internet.

Key Features of SafeDNS

As the hospitality industry navigates the digital landscape, prioritizing cybersecurity is non-negotiable. Make the proactive choice to stay protected with SafeDNS and strengthen your reputation against the ever-present threat of cyberattacks.

Why DNS Security Is Important

DNS security is vital for preventing disruptions in operations. Any disruption to a business’s online presence can have devastating consequences. DNS attacks, such as DDoS attacks or cache poisoning, can render websites and services inaccessible. DNS security measures, including robust DNS hosting and protection, mitigate these risks, ensuring uninterrupted operations and customer access to primary and secondary DNS servers. Moreover, DNS security protects sensitive data. DNS queries contain sensitive information about the websites users intend to visit, and without adequate security, these queries can be intercepted by malicious actors. Implementing DNS security ensures the confidentiality of DNS data, and protects user privacy.

Without DNS security, there are risks of phishing and fraud. Cybercriminals often use DNS to conduct phishing attacks. Malicious actors create deceptive websites with domain names similar to legitimate ones, tricking users into revealing personal information. DNS security measures help detect and block these fraudulent domains, reducing the risk of phishing and fraud incidents.

In addition, many industries and jurisdictions have specific regulations and compliance requirements related to data protection and cybersecurity. Implementing DNS security measures can help companies meet these legal obligations and avoid enormous fines for non-compliance related to IP addresses and DNS settings.

DNS Security Best Practices

Log all DNS activities: Maintain detailed logs of DNS queries and responses to monitor for suspicious activities and troubleshoot issues effectively. Analyze these logs regularly to detect security vulnerabilities and respond to potential threats.

Keep the DNS cache locked: Make sure that cached data in your DNS server is secure and not vulnerable to cache poisoning attacks. Implement measures to prevent unauthorized access or manipulation of the cache.

Configure access control lists (ACL) precisely: Implement strict ACLs to control which devices and networks are allowed to access and use your DNS servers. Only authorized users and systems should have access to internal DNS servers.

Regularly update the DNS server: Remember to update your DNS server software regularly and keep it patched to address known vulnerabilities and security weaknesses. Stay informed about security advisories related to your specific DNS server software.

Deploy dedicated DNS applications: Use dedicated DNS server software designed for security and performance, such as BIND, Microsoft DNS, or other reputable options, rather than repurposing general-purpose servers.

Implement DNSSEC (DNS Security Extensions): DNSSEC adds a layer of security by digitally signing DNS records, ensuring data integrity and authenticity. Enforce DNSSEC for your domains to protect against DNS spoofing and cache poisoning attacks and validate DNS data integrity.

Mask the primary DNS server and information: Hide the identity of your primary DNS server and its version number to minimize the risk of attackers targeting known vulnerabilities in your DNS software.

Time limit the recursive DNS query response: Set a time limit for how long your DNS server will spend processing a recursive query. This helps prevent your server from being tied up by malicious or excessive requests.

Facilitate random DNS socket pool utilization: Configure your DNS server to use a random selection of source ports and request IDs to make it harder for attackers to predict and spoof DNS responses.

Ensure DNS availability with adept redundancy: Implement redundant DNS servers to maintain service availability even if one server becomes compromised or goes offline. Use load balancing and failover mechanisms for seamless DNS operation.

Reinforce the name servers: Secure the physical and network infrastructure of your name servers. Limit physical access, use strong authentication for administrative access, and employ firewalls and intrusion detection systems.

Filter and Monitor DNS Traffic: Employ DNS traffic filtering to block known malicious domains and monitor DNS traffic for anomalies and suspicious patterns. Tools like DNS filtering services and intrusion detection systems can be useful for this purpose.

In addition to these best practices, it’s important to stay updated on the latest DNS security threats, as this landscape evolves continuously. Regular security audits, penetration testing, and employee training can also help ensure the overall security of your DNS infrastructure.

DNS security is a critical component of a robust cybersecurity strategy. By implementing DNS security best practices, you can protect your organization’s online presence, maintain user trust, and ensure the availability and integrity of your online services. Remember that security is an ongoing process, and staying vigilant against emerging threats is key to a secure DNS infrastructure.