惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

L
LINUX DO - 最新话题
G
Google Developers Blog
J
Java Code Geeks
The GitHub Blog
The GitHub Blog
F
Full Disclosure
H
Help Net Security
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
Vercel News
Vercel News
酷 壳 – CoolShell
酷 壳 – CoolShell
Recent Announcements
Recent Announcements
Help Net Security
Help Net Security
The Hacker News
The Hacker News
IT之家
IT之家
Y
Y Combinator Blog
Martin Fowler
Martin Fowler
L
Lohrmann on Cybersecurity
C
CERT Recently Published Vulnerability Notes
V
Visual Studio Blog
博客园 - 聂微东
Hacker News: Ask HN
Hacker News: Ask HN
H
Hacker News: Front Page
Know Your Adversary
Know Your Adversary
Security Latest
Security Latest
Security Archives - TechRepublic
Security Archives - TechRepublic
Simon Willison's Weblog
Simon Willison's Weblog
www.infosecurity-magazine.com
www.infosecurity-magazine.com
T
Troy Hunt's Blog
Last Week in AI
Last Week in AI
Schneier on Security
Schneier on Security
N
News and Events Feed by Topic
博客园 - 【当耐特】
有赞技术团队
有赞技术团队
AWS News Blog
AWS News Blog
Blog — PlanetScale
Blog — PlanetScale
博客园_首页
Google DeepMind News
Google DeepMind News
Cloudbric
Cloudbric
N
News | PayPal Newsroom
A
About on SuperTechFans
S
Schneier on Security
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
Hugging Face - Blog
Hugging Face - Blog
M
MIT News - Artificial intelligence
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
雷峰网
雷峰网
T
The Exploit Database - CXSecurity.com
罗磊的独立博客
K
Kaspersky official blog
The Cloudflare Blog
I
Intezer

Infoblox Blog

Oracle Cloud Discovery for Universal Asset Insights | Infoblox Why Asset Discovery Integrations Start with Network Intelligence Infoblox Kentik Acquisition: AI-Driven Network and Security Intelligence Proxyware actor behind fake 7-Zip is bigger than you think! Using Protective DNS to Dismantle Global Scam Networks | Infosecurity Europe 2026 Residential Proxies: Why DNS Is the Stronger Play NIST Maps DNS Security to the Cybersecurity Framework 2.0 Trusted Infrastructure Data for AI and AgenticOps | Infoblox Meet Your Security Analyst’s New AI Teammate | Infoblox IQ DCloud Uni-App: One Framework, 236,000+ Scam Sites Operation Endgame VS SocGholish Fake Updates Human Judgment Hacks: How Lookalike Domains Work Residential Proxies in the Wild Unlocking Universal DDI on Equinix: Infoblox Brings Cloud-First DDI to Equinix Network Edge “Headless”? What Is It and Do I Need to Go There? The Alert Is Already Too Late The Half of Your Attack Surface Nobody Owns Infoblox Earns Terraform Partner Premier Status for NIOS Provider What 550 Security Leaders Just Told Us about the Age of AI, and Why Preemptive Digital Risk Protection Can’t Wait Lookalike Domains Expose the iPhone Theft Economy Amusing Numerology: Analysis of the Numbers in Domain Names 4 Trends Shaping the Future of Network Operations Preemptive Threat Disruption at Scale: How Infoblox and Axur Turn External Risk into Protection Why the Axur Acquisition Marks a Turning Point for Preemptive Security Don’t Wait To Be Attacked: Stop Phishing, C2 and Data Exfiltration with Infoblox Threat Intelligence in AWS Network Firewall Hold the Phone! International Revenue Share Fraud Driven by Fake CAPTCHAs AI, Project Glasswing and DNS: Beyond Vulnerabilities Three Infoblox Integrations with Google Cloud That Give Enterprise Teams More Control Over Their Networks Protective DNS: Why Telcos Are Turning to DNS as the Platform for Consumer Security Automating Infoblox DDI with Red Hat Ansible | Configuration as Code for DNS, DHCP and IPAM Hiding in Plain Sight: Abusing Composite Domain Names NIST SP 800-81r3: A Long-Overdue Wake-Up Call for DNS Security Patterns, Pirates, and Provider Action: What We Learned Working with Keitaro NIST SP 800-81r3: What’s New? No Reach, No Risk: The Keitaro Abuse in Modern Cybercrime Distribution Unified Asset Visibility: A Strategic Imperative for CIOs and CISOs Infoblox Partners with Leading SASE Vendors to Modernize DNS and DHCP for Distributed Enterprises NIST DNS Security Best Practices: Top 5 Takeaways Break out the bubbly: NIST SP 800-81r3 has been published! Empowering Women to Lead in APJ: Infoblox at the Leadership Summit for Women in Technology, AI & Cyber
What You Cannot See is Hurting You Most
Mehul Patel · 2026-04-02 · via Infoblox Blog

I was on a call last week with a vice president of IT operations who confidently told me their infrastructure visibility was “probably 85 percent, maybe 90 percent.” When I asked how they measured that, there was a pause. “Well, we run network scans weekly, we have got endpoint agents on most systems and our CMDB is … reasonably up to date.”

Two weeks later, they ran Infoblox Universal Asset Insights™ across their environment.

It found 48 percent more assets than all their existing tools combined.

Their real number? 52 percent.

They found 847 IoT devices their scanning tools had never detected: cloud resources that had been decommissioned months ago but were still running (and billing), and shadow IT deployments nobody owned. The gap between what they thought they could see and what actually existed was not a rounding error. It was a business risk.

Here is what bothered me most: this was not unusual. According to Gartner research, only 17 percent of organizations can clearly identify 95 percent or more of their assets.1 The rest are operating with significant blind spots—and most do not realize it.

The Intelligence Already Exists

Most organizations approach infrastructure visibility as a data collection problem. They deploy more scanners, add more agents and integrate more tools, trying to build visibility by aggregating partial views from dozens of sources.

But there is a different approach, and it starts with recognizing something fundamental: for on-premises infrastructure, every device that connects must interact with your network’s DNS and DHCP services.

  • Request an IP address → DHCP assigns and tracks every allocation
  • Resolve domain names → DNS logs every lookup and connection
  • Be mapped to location → IP address management (IPAM) tracks network topology

For on-premises environments, nothing bypasses DNS and DHCP. Your network services see every connection because devices cannot function without them. For cloud environments, Universal Asset Insights extends this authoritative foundation through direct integration with cloud provider APIs, capturing resources the moment they’re provisioned.

DNS and DHCP are not visibility tools you deploy. They are the operational network services that already see everything on-prem by default. Universal Asset Insights leverages this foundation and extends it systematically across hybrid and multi-cloud environments.

This data is authoritative because it is operational. On-premises networks require DNS and DHCP to function. Cloud platforms expose real-time provisioning data through their APIs. Every connection is recorded. Every transaction is logged. Every change is tracked, in real time.

But here’s what most organizations miss: raw DNS and DHCP transaction logs aren’t infrastructure intelligence—they’re unprocessed data. A DHCP lease shows an IP was assigned, not what device received it or whether it’s authorized. DNS queries show lookups, not asset relationships or security context.

The organizations that solve the discovery confidence gap don’t just collect authoritative data. They process it at scale, enrich it with cloud provider APIs, apply enhanced discovery for edge cases and correlate everything into unified intelligence. That’s the difference between having visibility and insights.

Why This Matters More Than Ever

I have been thinking about why organizations tolerate partial visibility. The reasons usually sound reasonable:

  • We are at 80–90% coverage—that is good enough
  • We will improve visibility during the next tool refresh
  • Scanning tools will eventually find everything
  • This is an acceptable level of risk

These assumptions made sense five years ago. They do not make sense now.

Gartner research shows that 30 percent of IT assets are lost or unaccounted for.2 When your asset inventory has that kind of gap, the consequences compound: compliance audits become guesswork, security tools cannot protect what they do not know exists and cloud resources run untracked.

According to the Flexera State of Cloud report, 28 percent of annual public cloud spend is wasted,3 much of it on orphaned resources and untracked infrastructure. For a mid-sized organization spending $3–5 million annually on cloud, that is nearly $1 million in waste.

But here is what changes the equation completely: AI and automation.

Organizations are accelerating AI adoption, but AI cannot secure what it cannot see. AI agents and automation frameworks require accurate, verified asset information to make reliable decisions. Industry data shows that typical CMDB accuracy hovers around 60 percent.4 When your configuration database is 60 percent accurate, your AI operates with 40 percent blind spots.

Incomplete discovery data trains models on flawed inputs. Automation built on partial visibility generates cascading failures. Agentic AI makes decisions about assets that do not exist—and misses assets that do.

Artificial intelligence does not create a visibility problem. It magnifies it. Check out the e-book to understand the risks—and learn how authoritative network intelligence is the foundation AI actually needs.

What Actually Works

Over the last year, I have watched customers solve this problem, not by adding more scanning tools, but by changing where they look for truth.

A global financial services organization was managing AWS, Azure and Google Cloud independently—no unified view of IP allocation, ownership or resource inventory. They discovered 847 orphaned cloud resources and eliminated significant annual waste. Time to full multi-cloud visibility? 15 minutes.

A UK supermarket chain facing a £6.8 billion IT divestiture needed to separate infrastructure within 36 months or face regulatory fines. They used DNS and DHCP intelligence as the foundation for the entire separation. Met the deadline. Avoided the fines.

An enterprise technology company had thousands of dangling DNS records exposing them to domain takeover attacks. They identified and remediated 2,400 inactive DNS records, reducing their attack surface vulnerability by 40 percent.

Why Some Organizations Achieve Complete Visibility

Traditional scanning tools face inherent limitations:

  • Scan periodically, missing devices between intervals
  • Require agents that IoT/OT devices cannot run
  • Miss ephemeral workloads that exist for minutes
  • Cannot track disconnected or sleeping systems

Universal Asset Insights uses a multi-layer architecture that eliminates these gaps:

  • On-premises infrastructure (servers, workstations, network devices)
    • Foundation: DNS/DHCP transaction logs capture every connection in real time
  • Multi-cloud environments (AWS, Azure, Google Cloud, private cloud)
    • Extended via: Cloud provider APIs processed at scale and normalized into actionable IPAM intelligence
  • Edge and IoT ecosystems (medical devices, industrial control, sensors)
    • Foundation: DNS/DHCP sees every network connection; enhanced discovery captures static IP devices
  • Shadow IT and BYOD (unmanaged endpoints, contractor devices)
    • Foundation: DNS/DHCP logs every network request regardless of endpoint management status
  • Ephemeral workloads (containers, serverless, auto-scaling instances)
    • Extended via: Cloud API integration captures instances that exist for minutes

This multi-layer architecture delivers 100 percent coverage versus 60–70 percent from scanning-based tools. The DNS/DHCP foundation guarantees visibility into everything that connects to on-premises networks. Cloud API integration extends that foundation to hybrid and multi-cloud environments. Enhanced discovery engines catch edge cases like static IP devices. Machine learning correlation ties it all together into a unified, normalized view.

Where traditional approaches aggregate fragmented data sources and hope for coverage, the organizations solving this problem start with authoritative network services and extend systematically.

Three Infrastructure Truths

When organizations build from an authoritative foundation across on-prem and cloud environments, they unlock three capabilities that eliminate blind spots:

  • Authoritative IPAM Intelligence: Complete, real-time IP address management across hybrid and multi-cloud environments. Eliminate IP conflicts, reduce MTTR by 70%, accelerate cloud migrations.
  • Verified CMDB Accuracy: ServiceNow CMDB updated with verified asset data—95%+ accuracy, up from typical 60%. Save 16+ hours monthly on manual reconciliation, enable reliable automation, pass compliance audits.
  • Security Context and Exposure Mapping: Real-time asset context for SIEM/SOAR correlation. Reduce incident MTTR by 75%, eliminate false positives, close security blind spots.

When NetOps, SecOps and CloudOps work from a single DNS and DHCP-based source of truth, they speak the same operational language. Incidents do not linger because teams debate which data is correct. Diagnostics happen faster. Triage becomes systematic.

What I Have Learned

I used to think infrastructure visibility was a better discovery tool. What I have learned is that it is actually about recognizing the truth.

The infrastructure intelligence you need already exists. It is in the DNS and DHCP services your infrastructure depends on to function. Every device that connects leaves an authoritative record. Every connection is tracked. Every change is logged.

The question is not whether complete visibility is possible. The question is how much you are losing while operating with partial truth.

Because if you are making decisions about security, compliance, operations or cloud spending based on data that is 30–40 percent incomplete, you are not making informed decisions. You are guessing.

And eventually, those guesses catch up with you, especially when AI starts amplifying them.

Sources

  1. What You Need to Know from Gartner Innovation Insight: Attack Surface Management, Le, Jon, JupiterOne, June 24, 2024.
    https://www.jupiterone.com/blog/what-you-need-to-know-from-gartner-innovation-insight-attack-surface-management
  2. Gartner Bombshell: 30% of IT Assets Lost, Marks, Kyle, Retire-IT. Last accessed: February 5, 2026.
    https://retire-it.com/gartner-ham-bombshell/
  3. Public Cloud Waste at 28%: Time to Consider On-Demand Private Cloud as an Alternative?, Ghosh, Sash, OpenMetal, October 23, 2025.
    https://openmetal.io/resources/blog/control-public-cloud-waste-with-alternative-cloud/
  4. CMDB Accuracy Woes? It’s Time for a New Approach, Deur, Paul, ReadyWorks. Last accessed: February 5, 2026.
    https://www.readyworks.com/blog/cmdb-accuracy-woes-its-time-for-a-new-approach