In addition to malicious activity like phishing or malware, Okyo Garde also detects suspicious activity, including communications with grayware sites, dynamic DNS sites, newly registered domains, and recently malicious sites.
Grayware - Software categorized as potentially unwanted programs (PUPs). These programs can be annoying and harmful. They include adware, spyware, and tracking software.
Dynamic DNS - Attackers frequently use Dynamic DNS services to quickly use new hostnames and URLs for their malware servers when their old hostnames and URLs are detected and blocked.
Newly Registered Domains - Attackers frequently use new domains, registered within the last 32 days, for launching malicious attacks. Legitimate websites are rarely available this quickly.
Recently Malicious - Sites that have previously hosted malware, phishing, or command and control services, but have not displayed any harmful activity for at least the past 30 days.
You can choose whether Okyo Garde watches or blocks suspicious activity.
In the Okyo Garde app, you can adjust the settings to watch or block suspicious activity.
Watching suspicious activity will keep track of when devices on your network visit a site in one of the Suspicious categories and displays them on the security tab.
Blocking suspicious categories blocks attempts to visit sites in one of the Suspicious categories and also displays them on the security tab.
To adjust the setting to watch or block suspicious activity
Open the Okyo Garde app
Select the settings icon on the top left
Select the network name you would like to manage
Select suspicious activity
Select watch or block
Select save to update the settings