Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.


03:25 PM
Dark Reading
Dark Reading
Products and Releases

Quad9 Offers Owners of Android-Based Devices DNS Security Protections for Free

Privacy-centric DNS service blocks access to more than 15 million malicious events per day, limiting access to malware and phishing as well as encrypting private DNS data.

Berkeley, CA, May 7, 2019 – Today Quad9 released Quad9 Connect - a mobile app allowing the more than 2.5 billion global users of smartphones built on Android to use the free security and privacy driven recursive domain name service (DNS) to block access to malicious websites and maximize web browsing privacy while using an Android mobile device. Launched in late 2017, Quad9 is used billions of times a day across6 continents, typically blocking access to tens of millions of malicious events per day. The Quad9 Connect mobile app can be downloaded from the Google Play Store at https://bit.ly/quad9-android.

Whenever a Quad9 user clicks on a website link or types an address into a web browser, Quad9 checks the site against a list of domains combined from more than 19 different threat intelligence partners. Each threat intelligence partner supplies a list of malicious domains which examine such factors as scanned malware discovery, network IDS past behaviors, visual object recognition, optical character recognition (OCR), structure and linkages to other sites, and individual reports of suspicious or malicious behavior. Based on the results, Quad9 completes or denies the lookup attempt, preventing connections to malicious sites when there is a match.

"Over the past 18 months, global users of Quad9 have bolstered their cyber protections and maximized their privacy," said John Todd, executive director of Quad9. "Our Android solution has been in development for several months, and we're excited to add an easy-to-use solution to solve the otherwise difficult configuration problems that Android presents for DNS modification. The Quad9 network is fully prepared for the expected exponential growth of traffic as global Android users come on board."

"IBM is proud to be a key member of Quad9 since its launch in 2017. Since then, the service has experienced tremendous adoption," said Paul Griswold, Director of Strategy and Product Management, IBM X-Force Threat Intelligence. "The launch of the Quad9 Android app will help to further extend Quad9's user base and make its security, privacy, and performance benefits available to Android mobile users worldwide."

Privacy is built into the DNA of Quad9. No personally identifiable information is collected or logged by the system. IP addresses of end users are not stored to disk or distributed outside of the equipment answering the query in the local data center. The application uses DNS-over-TLS protocols to encrypt DNS data over the Internet, ensuring that mobile carriers, wireless hotspots, or any other network operator in the path cannot see the DNS requests from the client. Quad9 is the only not-for-profit organization dedicated only to the operation of DNS services. There are no commercial motivations for revenue streams involving collecting or selling your private data, and the core charter of the organization is to provide secure, fast, and private DNS security.

The application supports encryption using the standards-based protocol DNS-over-TLS. Quad9 Connect gives feedback to the user in the event that a referenced site is on the threat list via a notification. It supports "walled garden" hotspot signups and works across both Wi-Fi and mobile carrier data networks.

Quad9 systems are currently distributed worldwide in more than 140 locations in 82 countries, with an expansion target of 200 locations in total for 2019. These servers are located primarily at Internet Exchange points, meaning the distance and time required to get answers is lower than almost any other solution. These systems are distributed worldwide, not just in high-population areas, meaning users in less well-served areas can see significant improvements in speed on DNS lookups. The systems are "anycast" meaning queries will automatically be routed to the closest operational system.

About Quad9

Quad9 is a free, recursive, anycast DNS platform that provides end users robust security protections, high-performance, and privacy. Quad9 is an independent nonprofit formed from a collaboration of IBM, Packet Clearing House and the Global Cyber Alliance. Learn more at www.quad9.net.


Media Contact:

Adam Benson
Vrge Strategies
[email protected]

Phone: (202) 999-9104

Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 5/28/2020
GDPR Enforcement Loosens Amid Pandemic
Seth Rosenblatt, Contributing Writer,  5/27/2020
Register for Dark Reading Newsletters
White Papers
Cartoon Contest
Current Issue
How Cybersecurity Incident Response Programs Work (and Why Some Don't)
This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
PUBLISHED: 2020-05-29
In FreeRDP less than or equal to 2.0.0, a possible resource exhaustion vulnerability can be performed. Malicious clients could trigger out of bound reads causing memory allocation with random size. This has been fixed in 2.1.0.
PUBLISHED: 2020-05-29
In Windows Master (aka Windows Optimization Master), the driver file (WoptiHWDetect.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0xF1002558
PUBLISHED: 2020-05-29
The mappress-google-maps-for-wordpress plugin before 2.54.6 for WordPress does not correctly implement capability checks for AJAX functions related to creation/retrieval/deletion of PHP template files, leading to Remote Code Execution. NOTE: this issue exists because of an incomplete fix for CVE-202...
PUBLISHED: 2020-05-29
In FreeRDP less than or equal to 2.0.0, by providing manipulated input a malicious client can create a double free condition and crash the server. This is fixed in version 2.1.0.
PUBLISHED: 2020-05-29
IBM Planning Analytics Local 2.0.0 through 2.0.9 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 17...