<ul><li>Spoofing emails are a common tactic among threat actors to make emails appear legitimate.</li><li>Infoblox Threat Intel discovered a group named Muddling Meerkat conducting DNS operations in China.</li><li>The threat actors behind Muddling Meerkat used domain spoofing to evade security safeguards.</li><li>Infoblox Threat Intel used home-grown telemetry and community feedback to investigate Muddling Meerkat.</li><li>QR code phishing campaigns were the largest group of malspam that targeted Chinese email recipients.</li><li>Japanese phishing campaigns were another sizable percentage of collected spam that targeted Japanese users.</li><li>Domain spoofing, fake domains, and TDSs were used to evade detection by these Chinese actors.</li><li>Extortion emails are still common, and they contain domain spoofing to make them appear more legitimate.</li><li>Mysterious Malspam is a spam campaign with spoofed sender domains and benign Excel spreadsheet attachments.</li><li>Domain spoofing is a widely used tactic among threat actors to evade security safeguards.</li></ul>

Muddling Malspam: The Use of Spoofed Domains in Malicious Spam

Discover more