During an investigation, a China-linked group, Muddling Meerkat, was found to be sending covert DNS traffic using open resolvers, bypassing China's Great Firewall, with unclear intentions speculated to be related to reconnaissance or DNS denial-of-service attacks. The group's expertise in DNS poses a challenge for threat researchers, while highlighting China's strategies in utilizing DNS for potential cyber operations. The Great Firewall and Great Cannon technologies used by China create noise and misinformation in DNS, hindering investigations
The mysterious Muddling Meerkat operation, ongoing for over four years, has implications for cybersecurity and critical infrastructure protection, prompting the disclosure of findings by Infoblox and its partners for further research. ```https://www.darkreading.com/threat-intelligence/muddling-meerkat-poses-nation-state-dns-mystery