Cloud Security
How to defend against DNS exfiltration in AWS?
* VPCs by default use the Amazon-provided DNS which can be used to bypass some network-level protection mechanisms (e.g. NACLs or SGs) or monitoring (e.g. VPC Flow Logs). * Recently a new service has been released: the Route 53 Resolver DNS Firewall which allows for blocking and monitoring DNS queries