DNS Security
Cato’s DNS Security inspects all DNS traffic, preventing malicious DNS activity hiding within the protocol’s traffic, and blocking DNS requests to malicious destinations before a connection is made.
DNS Security Capabilities
AI-based DNS Inspection Deliver Superior In-line Phishing Protection
Phishing is one of the top attack vectors that every CISO is concerned about.
Ongoing training of AI and ML algorithms on Cato’s massive global data lake enables Cato DNS Security to provide in-line identification of domain squatting and other website impersonation attempts. This is achieved through real-time analysis of webpage components, domain age, popularity, and patterns associated with toolkits used in phishing sites. This Inline detection of phishing attacks helps prevent credential harvesting, malware delivery, and sensitive data loss.
Block Malicious Domains and C&C Sites Before Connection
The number of malicious sites that host command and control (C&C) servers to remotely manage malware is huge. Attackers continuously move their C&C servers between sites to avoid detection and blacklisting. Cato DNS Security uses Cato’s timely and continuously optimized threat intelligence system to identify malicious domains and C&C sites and block traffic to and from them in real time. Using Cato DNS Security, enterprises dramatically reduce exposure to millions of web-based attacks with near-zero false positives.
Stop Data Loss and Malicious Activity over DNS Tunneling
DNS tunneling attacks leverages the need to allow DNS traffic to pass through security controls, as a method for data exfiltration and C&C access. Cato’s DNS Security analyzes DNS request properties such as packet size, record type, and the ratio of unique subdomains to identify anomalies and indicators of DNS tunneling attacks. Cato’s AI/ML algorithms are continuously trained to identify DNS Tunneling, enabling protection that is not dependent on specific knowledge of the threat actor or domain name.
Prevent Resource Leaching from Crypto Miners
Crypto miners use compromised corporate endpoints for financial gain leading to system instability, poor user experience, and increased costs for the organization. Cato leverages dedicated rules and heuristics to identify domains that are used for crypto-mining operations, blocking any DNS requests to these destinations. With Cato, enterprises protect users’ productivity and security from impact by unauthorized use.
Full Visibility into DNS Security Threats and Events
All threat activity is logged in Cato’s global data lake, providing administrators with instant access to the threat information they need via a single console. DNS security events are visible in the security threats dashboard with filtering and drill down capability into all events related to DNS protection. Security teams can quickly understand and evaluate DNS threats to their organization without aggregating multiple data sources or navigating between multiple consoles.
DNS Protection Video Demo
Cato’s DNS protection provides an additional layer of protection by blocking DNS requests to malicious and phishing sites, blocking domains registered within the last 14 days and blocking DNS tunneling and crypto-mining activity.
Application cohérente des stratégies
Protection évolutive et résiliente
Gestion autonome du cycle de vie
Vue d’ensemble unifiée
La plate-forme Cato SASE Cloud alimente le secteur numérique
Les clients ont recours à Cato pour éliminer les architectures héritées complexes composées de multiples solutions de sécurité ciblées et de services réseau coûteux.
La plate-forme SASE de Cato, unique en son genre, fournit de façon uniforme et autonome un accès sécurisé et optimisé aux applications, partout et pour tous.
Juki reduces network costs by using one security policy for all group companies
Komax Drives Innovation, Cloud Connectivity, and Mobile Collaboration with Cato
Brake Masters met un frein aux pannes sur 71 sites grâce à Cato
Flügger Group Gains Network Flexibility and Security with Cato SASE Cloud
Alewijnse Transforms Global, Real-Time WAN with Cato Secure SD-WAN
O-I Taps Augmented Reality and Cato SASE Cloud to Realize “Impossible-to-Count” Savings
Vitesco Technologies Builds New Global Enterprise Network with Cato
Haulotte Reduced Costs and Improved Application Performance by Migrating from MPLS to Cato SASE
Waseda University Enables Universal Secure Remote Learning and Digital Transformation with Cato
Topcon Achieves a Fast, Secure Global WAN with Cato
Fidal Boosts WAN Performance, Cuts Costs in Half by Switching from MPLS to Cato
CloudFactory Boosts Network Scalability, Agility, and Security with Cato
Cato SASE Cloud secures networking of Bank Avera locations and its mobile employees
Fiskars Group Boosts Business Agility and Security with Cato SASE
Fullerton Health Builds a Secure SASE Linking 550 Locations and the Cloud
AFI Properties Cures Network, Security, and Remote Access Headaches with Cato SASE
How Redner’s Markets Transformed the Retail Experience by Transforming its Network with Cato
Chemical Manufacturer ESI Reduces the Time to Integrate Acquired Companies by 80% with Cato
Gamuda Redefines IT Operations with the Cato SASE Cloud Platform
Cato Networks a été nommée leader dans le Magic Quadrant™ de Gartner® pour les SASE à fournisseur unique 2024.
« Cato Networks est la tête d’affiche de ZTE et de SASE »
Cato Networks reconnu comme un leader de la croissance et de l’innovation de SASE
Le SASE de Cato identifié comme un « Leader » dans le rapport GigaOm Radar
Cato Networks reconnu comme leader mondial des produits SSE
Transformation du WAN avec SD-WAN : créer une base mature pour le succès de SASE
« Nous avons lancé un simulateur de failles et d’attaques sur Cato, les taux d’infection et les mouvements latéraux ont chuté tandis que les taux de détection ont grimpé en flèche. Ces facteurs ont été déterminants pour choisir Cato en tant que fournisseur de sécurité. »
Essayez Cato
La solution que les équipes IT attendaient.
Préparez-vous à être surpris !