DNS over HTTPS

Misissued TLS certificates tied to Cloudflare’s 1.1.1.1 DNS service raise internet-security concerns

Cloud, News, Privacy, Risk, Vulnerabilities

September 4, 2025

Security researchers disclosed mis-issued TLS certificates tied to Cloudflare’s 1.1.1.1 DNS service, a flaw that could enable impersonation and traffic interception. With the issuer and responsible parties not fully disclosed, the episode underscores ongoing vulnerabilities in the certificate authority system and the role of Certificate Transparency in detecting mis-issuances.
Cloudflare Confirms 1.1.1.1 Outage Stemmed from Internal Misconfiguration, Not Attack

Cloud, News, Policy, Vendors

July 17, 2025

Cloudflare confirmed that a recent outage of its 1.1.1.1 Resolver service was caused by an internal misconfiguration, dismissing concerns of a cyberattack or BGP hijack. The incident led to significant disruptions for users globally, with full restoration achieved within hours.
New Phishing-as-a-Service Operation Utilizes Advanced Evasion Techniques

Cybercrime, News, Risk, Vulnerabilities

March 29, 2025

The Morphing Meerkat phishing operation employs advanced techniques including DNS over HTTPS to evade detection and deliver dynamic spoofed login pages for over 114 brands.