Cisco Umbrella (formerly OpenDNS) Stops Cybercrime Before it Starts

Threats continue to increase in sophistication but attackers often reuse the same infrastructure in multiple attacks — leaving cyber fingerprints. What if you could use those fingerprints to uncover attacks before they launch? We think this package is a bit of a secret weapon against cybercrime and insider data leaks.

Umbrella, by Cisco, is unlike most other forms of network security. It works at the level of the Domain Name System, or DNS. Every time a connection request is made on your network, Umbrella checks the domain name details and IP address at the other end of the connection to see if there’s anything suspicious or if it’s a known good address.

What does it check the IP address against?

Herein lies the power of the product. Umbrella (and its individual retail version, OpenDNS) is so popular that around 2% of the world’s DNS requests are observed by the product. That huge pool of data means that insights hidden in more than 80 billion IP requests per day can be detected by machine learning and applied to every IP request on your network.

For example: factors like how recently a domain was registered, whether the domain name looks like it was generated by a computer instead of a human, and whether an unusual amount of traffic from more than one location, or at odd times of day is trying to head towards it all combine to create a risk profile for a given IP address. If multiple factors are present, the IP address attracts a high risk score.

If software on your network tries to connect to the suspect IP address, it will be stopped and you will be warned. And just like that, an attack is blunted and your data and network are safer.

It’s modular, but even the base product is very useful

The base module for Umbrella plugs into a number of other software products in the Cisco range, but carries a huge amount of value in its own right.

It protects your employees when they travel and connect to potentially compromised wi-fi, or even when they’re using their PC at home and sharing it with their children.

It protects branch offices that connect direct to Internet, when you’re not there to watch over them. It works over all ports and protocols – even direct-to-IP connections. You can stop malware before it reaches your endpoints or network.

You can use it as a filter over the web content that your employees are permitted to use. Restrict social networking or any individual website and improve productivity.

There are also use cases for stopping ransomware and Advanced Persistent Threats that sit quietly on your network leaking data, creating backdoors for attackers and allowing other programmes to download and install, and insider data leaks.

The price point makes it a no-brainer

At just $5,700 plus gst for coverage up to 100 seats, Umbrella is practically a no-brainer. It protects you silently against multiple kinds of threat, ready to jump in and prevent a risky connection.

It’s lightweight and pays for itself multiple times over every time it prevents a risky connection that would see data leaked or malware installed.

On top of all that, deployment takes just a few minutes.

Talk to us today about a no-cost Proof of Concept for your organisation.