This service blocks the connection between the malicious bot and the hacker's command/control server to prevent the hacker from controlling the PC infected by the malicious bot.
Service targets
Support Targets
Private organization that operates its own DNS server
Service details
Before applying DNS sinkhole
After applying DNS sinkhole
When a malicious bot attempts to connect to a hacker's command/control server, it bypasses the KISA sinkhole server and prevents it from receiving the hacker's malicious command.
※ When a malicious bot uses a domain among command/control server identification information (domain, IP address), this is a method of changing the response IP address to a sinkhole server.