Quad9: Witnesses Extensive Growth in Blocked DNS Strength

Quad9 eadnskeep
Image source - quad9.net

Quad9’s free, public recursive DNS service blocks hosts, including malware, botnets, phishing, spyware, and various other risks that try to defraud end-users or harm their computers or networks. 

Millions of users worldwide utilize Quad9’s free DNS recursive resolvers ( to map hostnames to IP addresses as the portion of almost every Internet transaction. Quad9 shields users from connecting to destroying sites by straining every DNS transaction for mobile, desktop/laptop, and even difficult-to-secure and botnet-prone IoT devices.

Must read – Google’s Public DNS: How to Use and Why?

Quad9 is currently seeing a new record-setting rate of approximately 60 million of these blocking events per day, representing a 600% year-over-year growth rate. During heavy “storms” of cybercrime venture, this volume has fastened to over 100M events per day.

This growth correlates directly to hackers launching new tools, innovative phishing campaigns that send out enormous amounts of increasingly sophisticated messages, or as dormant channels of bots awaken and try to move their control systems. While the rate of non-blocked queries has developed significantly with additional users connecting to Quad9 over the last year, the growth rate in blocks has far surpassed these baseline growth numbers.

Quad9 has brought different geographies online in the last month and expanded the number of threat intelligence providers. It has developed the coverage and volume of blocked websites. Specific geographic locations drift towards risk-heavy lookup traffic: Sub-Saharan Africa, Central Asia, the Middle East, and Eastern Europe tend to have more significant blocked events.

Quad9 is a nonprofit with the aim of broader Internet security globally. Part of the mission is to expand systems into areas where other forms of cybersecurity are stimulating to find, following in better coverage where cybercriminals are most effective and where market share by for-profit providers is low. These risk-heavy domains are well-represented in Quad9’s network deployment and increase in the last year, in addition to the many dozens of locations Quad9 operates in developed nations.

The blocks Quad9 deploys have a very high confidence value, meaning that they are verified to be distributing malware, performing phishing attacks, have botnet command-and-control systems, or are harbouring other dangerous activities.

Quad9 will expand the geography of deployments in the coming year, implementing secure, local, high-privacy DNS to users at no cost. Simultaneously with the increase in our global footprint, Quad9 will add increased protection with more threat intelligence providers having specialized areas of risk identification such as election security, IP classification (in addition to domain classification,) and improved DGA (Domain Generation Algorithm) heuristics.