ChamelDoH: New Linux Backdoor Utilizing DNS-over-HTTPS Tunneling for Covert CnC

The threat actor known as ChamelGang has been observed using a previously undocumented implant to backdoor Linux systems, marking a new expansion of the threat actor's capabilities.
The malware, dubbed ChamelDoH by Stairwell, is a C++-based tool for communicating via DNS-over-HTTPS (DoH) tunneling.
ChamelGang was first outed by Russian cybersecurity firm Positive Technologies in September 2021, Read More

The Hacker News | #1 Trusted Cybersecurity News Site

June 16, 2023

ChamelDoH: New Linux Backdoor Utilizing DNS-over-HTTPS Tunneling for Covert CnC The threat actor known as ChamelGang has been observed using a previously undocumented implant to backdoor Linux systems, marking a new expansion of the threat actor's capabilities. The malware, dubbed ChamelDoH by Stairwell, is a C++-based tool for communicating via DNS-over-HTTPS (DoH) tunneling. ChamelGang was first outed by Russian cybersecurity firm Positive Technologies in September 2021, <a href="http://thehackernews.com/2023/06/chameldoh-new-linux-backdoor-utilizing.html" target="_blank" class="feedzy-rss-link-icon" rel="noopener">Read More</a> The Hacker News | #1 Trusted Cybersecurity News Site

The threat actor known as ChamelGang has been observed using a previously undocumented implant to backdoor Linux systems, marking a new expansion of the threat actor’s capabilities.
The malware, dubbed ChamelDoH by Stairwell, is a C++-based tool for communicating via DNS-over-HTTPS (DoH) tunneling.
ChamelGang was first outed by Russian cybersecurity firm Positive Technologies in September 2021, Read More

The Hacker News | #1 Trusted Cybersecurity News Site

About The Author

See author's posts

Related Stories

UK Gov Cybersecurity Jobs Average Salary is Under £45,000, Study Finds

Cloudflare Tunnels Abused in New Malware Campaign

Russia Expert Falls Prey to Elite Hackers Disguised as US Officials