DIMA WARRIOR deliver enterprise-grade, cloud-based cyber security to protect small and midsize businesses from today’s advanced cyber threats.DNS-based malware is particularly dangerous because it is used to steal critical company and customer data, interrupt business continuity and damage brand reputation. Hackers take lead of the underestimation of DNS services’ key role in the cyber kill chain – 91% of malware are using DNS services to build attacks. A global 2019 DNS Security survey conducted by IDC revealed that 82% of respondents said they had been targeted by a DNS attack in the last 12 months.Traditional security systems are not enough to mitigate this type of threat, as they could be easily avoided.

DNS Firewall is embedded in Dima virtual machines. The product provides a purpose-built and complementary solution to traditional enterprise network security systems, to safeguard DNS-based malware and advanced persistent threats (APT). It’s enhanced DNS query filtering capabilities, combined with dynamic threat intelligence feeds, allow for the quick identification of suspicious device activity, protecting malware infection and spread within a network, as well as phishing campaigns and data exfiltration attempts.

Why choose DIMA WARRIOR?

  • Secure your network from Malware, Phishing, Cryptomining, Command & Control, Domain Generation Algorithms (DGAs), Spoofing, Rebinding attacks, VPN, Trojan and Malware Ports
  • Cost-effective enterprise-level layered network security designed specifically for SMBs and IT service providers
  • Cloud-based security that gives you the power to scale your business without spending more on equipment, staff, or maintenance
  • Always-on protection that is always learning and always updating
  • Easy-to-use, easy to set up solution so you can start delivering total protection immediately
  • Proven technology built on one of the largest, most globally dispersed threat detection networks in the world
  • Compete with your competitors to promote your brand in the digital market.

Prevent Infection and Block DNS-Malware Activity

The virtual machines DNS Firewall solution, based on RPZ (Response Policy Zone), offers a dedicated layer of defense for malware protection and mitigation. DNS Firewall protects connected devices from becoming infected with malware and blocks their activity by enabling recursive DNS servers to pause or redirect queries from clients that want to access identified malicious domains and/or IPs. Illegitimate communications with C&Cs/botnets, and DNS based data exfiltration (DNS tunneling) will be blocked immediately, before they impact and damage your company.

Adapt Malware Protection With Threat Intelligence

To keep up the speed with the ever-evolving threat landscape, DNS Firewall includes dynamic threat intelligence services. DNS Firewall comes with this kind of constantly updated data from various distributed sources, to combat categories such as:

Abuse and spam related domains, Phishing-related domains, Malware-related domains, Cracked website FQDN(s), Botnet Command and Control

The data feed can be customized in an easier way with specific filtering policies to adapt to local security requirements.Using DNS Guardian, internal threat intelligence can be developed, bringing capability to disclose zero-day malicious domains.

Get Unified Control of DNS Filtering Policies

The virtual machines bring advanced filtering policy management capability, protecting up to date list of malicious or forbidden IP addresses, domains, URLs, or name servers. The whole DNS Firewall architecture is automatically updated regardless of the server type (Linux or EfficientIP’s secure DNS appliance) protecting – in a single operation – your organization from malware attacks.

Benefit From Advanced DNS Threat Reporting

Virtual machines pre-defined or customized reports give consolidated visibility and data-driven insights on DNS services for network security team. In addition, virtual machines deliver high-performing logging capabilities which can be seamlessly integrated with leading SIEM solutions such as Kibana, Splunk and QRadar. This integration provides DNS data for log correlation, enabling centralized analysis and reporting, including immediate access to requested malicious domains.