216.73.217.80

Discovers Multiyear Sophisticated Chinese DNS Operation

· Published 29/04/2024 15:18 · Modified 01/05/2024 23:02

Export JSON

Essential information

Published
29/04/2024 15:18
Modified
01/05/2024 23:02
Tags
china dns great firewall nation-state sophisticated
Related entities
10 observables, 1 intrusion sets (apt), 14 techniques (mitre)

Description

This report unveils a previously undisclosed multiyear operation conducted by a actor called Muddling Meerkat. The operation employs Domain Name System () queries, open resolvers, and interacts with 's . The tactics demonstrate the actor's ability to conduct extended covert operations, analogous to the recent compromise of the xz open source library. Muddling Meerkat appears to be a Chinese actor leveraging infrastructure for unclear motives.

External references