The Chinese threat group 'ChamelGang' infects Linux devices with a previously unknown implant named 'ChamelDoH,' allowing DNS-over-HTTPS communications with attackers' servers.
Yes, it isn’t great how DoH traffic can’t be controlled well. Apps using DoH makes blocking ads unnecessarily more difficult. (DoT solves DNS encryption better imo.) HTTPS is already often unblocked and also difficult to analyze, but DNS is already used enough for malware communication.
Yes, it isn’t great how DoH traffic can’t be controlled well. Apps using DoH makes blocking ads unnecessarily more difficult. (DoT solves DNS encryption better imo.) HTTPS is already often unblocked and also difficult to analyze, but DNS is already used enough for malware communication.