New Phishing-as-a-Service Operation Uses DNS over HTTPS for Evasion

A new phishing-as-a-service (PhaaS) operation named Morphing Meerkat has been discovered by researchers. This operation uses the DNS over HTTPS (DoH) protocol to evade detection. The DoH protocol allows DNS queries to be masked by encrypting them, making it more difficult to monitor and analyze malicious activities. This sophisticated evasion technique demonstrates the evolution of methods used by cybercriminals to bypass traditional security measures.