Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Attackers abuse Google DNS over HTTPS to download malware
Malware and Vulnerabilities
September 02, 2020
Bleeping Computer
While Google DNS is being used to resolve the suspicious domain, the response returned via Google DNS contains the malicious payload in an encoded form, as verified by BleepingComputer.
Read More
Google DNS
DNS-over-HTTPS (DoH)
DKIM Signature
Base64-encoded string
IP addresses
Publisher
Previous
AlphaBay dispute mediator jailed for 11 years
Threat Actors
Next
China-based APT Debuts Sepulcher Malware in Spear-Phish ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/iStock_56313646_SMALL.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/9cfb_shutterstock_706055950.jpg)
