Government Sleepwalking Into $6.7M of DNS Attack Damage

Research reveals the government sector is the most popular target for DNS attacks

EfficientIP revealed government organizations were hit by the highest number of DNS attacks per year in its IDC Infobrief 2019 Global DNS Threat Report. Government suffers an average of 12 DNS attacks per year, with each attack costing an average of $558,000, amounting to $6.7 million annually. Over half (51%) of government organizations suffered in-house application downtime as a result of DNS attacks in the last 12 months, rendering potentially vital services inaccessible, while 41% faced cloud service downtime. Another 41% of organizations were impacted by compromised websites, putting data at risk. Almost one in five (19%) government respondents also reported sensitive information or intellectual property being stolen via DNS, by far the highest among all industries.

Read the full press release.

Government Sleepwalking Into $6.7M of DNS Attack Damage

In a recent revelation, EfficientIP’s IDC Infobrief 2019 Global DNS Threat Report shed light on the alarming vulnerability of government organizations to DNS attacks. The report indicates that government entities are the most targeted sector, experiencing an average of 12 DNS attacks annually, with each attack incurring an average cost of $558,000. This cumulative impact results in an annual financial toll of $6.7 million, underscoring the urgent need for enhanced cybersecurity measures within the government sector.

Key Findings:

• Frequency of Attacks: Government organizations face an average of 12 DNS attacks per year, highlighting the persistent and targeted nature of cyber threats against the public sector.
• Financial Impact: The financial ramifications of DNS attacks are substantial, with each attack costing an average of $558,000. The annual cost to government organizations due to DNS attacks reaches a staggering $6.7 million.
• Service Downtime: Over half (51%) of government organizations experienced in-house application downtime in the last 12 months as a direct result of DNS attacks. This downtime not only hampers operational efficiency but also renders potentially vital services inaccessible to citizens.
• Cloud Service Impact: DNS attacks also affected cloud services, with 41% of government organizations facing downtime in cloud services. This further highlights the broader implications of DNS vulnerabilities on digital infrastructure.
• Compromised Websites: An alarming 41% of government organizations reported the impact of DNS attacks on compromised websites, posing a significant risk to sensitive data and potentially undermining the trust in government online platforms.
• Data Theft: The report reveals that almost one in five (19%) government respondents reported incidents of sensitive information or intellectual property theft via DNS attacks. This statistic stands out as the highest among all industries surveyed.

These findings emphasize the critical need for government organizations to prioritize and strengthen their cybersecurity posture, particularly in the face of the escalating sophistication of DNS attacks. The financial, operational, and reputational consequences of such attacks underscore the imperative for proactive and comprehensive cybersecurity measures to safeguard critical government infrastructure and protect sensitive information. EfficientIP’s report serves as a wake-up call, urging government entities to address these vulnerabilities promptly and invest in robust cybersecurity solutions to mitigate the risks posed by DNS attacks.