NIST’s 4-phase incident response lifecycle for DNS-attacks

Using Farsight Passive DNS


According to a Verizon Data Breach Investigations Report, phishing is the #1 cause of data breaches, a trend that shows no signs of slowing down. In fact, the speed at which hackers can obtain, use and discard DNS assets can be as fast as a few minutes.

To combat this, the National Institute of Standards & Technology (NIST) has outlined a 4-phase incident response lifecycle, which includes:

  • Step 1: Preparation
  • Step 2: Detection & analysis
  • Step 3: Containment, eradication & recovery
  • Step 4: Post-incident activity

Read on to see how Farsight Passive DNS, a globally adopted technology that provides visibility and insight into DNS-related threats, fits into NIST’s 4-phase approach.

Farsight Security
Jun 15, 2020
Jul 31, 2019
White Paper
Already a Bitpipe member? Login here

Download this White Paper!