C2 Infrastructure Archives • Information Security News

The Spectral Proxy: How the RoadK1ll Malware Uses WebSockets to Vanish into Your Network Main Operator Control Path within RoadK1ll

The Spectral Proxy: How the RoadK1ll Malware Uses WebSockets to Vanish into Your Network

ddos April 1, 2026

An imperceptible presence within a network remains the paramount trump card of digital malefactors, and a nascent...

The Bot Numerology: How “stager_51_bot” Unmasked MuddyWater’s Global LampoRAT Campaign

ddos March 25, 2026

Occasionally, a malicious campaign is betrayed not by labyrinthine code, but by a minuscule detail. Within the...

Inside the Iranian Arsenal: The Dutch Server Slip-Up that Exposed MuddyWater’s Global Spy Network Pivoting on known MuddyWater malware

Inside the Iranian Arsenal: The Dutch Server Slip-Up that Exposed MuddyWater’s Global Spy Network

ddos March 7, 2026

Cybersecurity sentinels at Ctrl-Alt-Intel have unearthed an exposed server inextricably tethered to the Iranian state-aligned threat syndicate,...

The Evoxt Labyrinth: Unmasking the New Subterranean Infrastructure of China’s PlugX Syndicates

ddos March 6, 2026

While the majority of the corporate world remains preoccupied with the latest vulnerabilities, a cadre of Chinese...

Vacuum of Power: The Rise of AuraStealer Amidst the 2026 Infostealer Dominance Struggle PhantomVAI malware loader npm Token Farming SesameOp Malware Flyoobe Malware FlipSwitch Rootkit fezbox Malware ModStealer Malware NightshadeC2 OldGremlin AI ransomware LummaStealer Qilin, ransomware-as-a-service Human Cybersecurity Ransomware ACRStealer Interlock Ransomware OVERSTEP Rootkit Malduck WordPress Malware

PhantomVAI malware loader npm Token Farming SesameOp Malware Flyoobe Malware FlipSwitch Rootkit fezbox Malware ModStealer Malware NightshadeC2 OldGremlin AI ransomware LummaStealer Qilin, ransomware-as-a-service Human Cybersecurity Ransomware ACRStealer Interlock Ransomware OVERSTEP Rootkit Malduck WordPress Malware

Vacuum of Power: The Rise of AuraStealer Amidst the 2026 Infostealer Dominance Struggle

ddos March 5, 2026

Following the dismantling of the Lumma Stealer infrastructure in 2025, the landscape of data-stealing malicious software began...

The Unstoppable Hive: Aeternum C2 Abandons Servers to Command Botnets via the Polygon Blockchain

ddos March 4, 2026

Qrator Labs has heralded the emergence of a novel botnet, dubbed Aeternum C2, which seamlessly transposes the...

The Silent Pivot: Global SystemBC Botnet Ensnares 10,000+ IPs, Including Government Portals ystemBC’s network traffic

The Silent Pivot: Global SystemBC Botnet Ensnares 10,000+ IPs, Including Government Portals

ddos February 6, 2026

Security specialists at Silent Push have unearthed a pervasive wave of SystemBC infections, a malware strain that...

The “Async” Surge: January 2026 Telemetry Reveals a Global Explosion in AsyncRAT Command Nodes

ddos February 4, 2026

A pronounced escalation in the activity of infrastructure tethered to the AsyncRAT remote access trojan has been...

The Dragon’s Hub: Researchers Unmask 18,000 Malicious C2 Servers Inside China

ddos January 21, 2026

A comprehensive architectural analysis of the malicious infrastructure within China has unearthed over 18,000 command-and-control (C2) servers...

C2 Infrastructure

The Spectral Proxy: How the RoadK1ll Malware Uses WebSockets to Vanish into Your Network

The Bot Numerology: How “stager_51_bot” Unmasked MuddyWater’s Global LampoRAT Campaign

Inside the Iranian Arsenal: The Dutch Server Slip-Up that Exposed MuddyWater’s Global Spy Network

The Evoxt Labyrinth: Unmasking the New Subterranean Infrastructure of China’s PlugX Syndicates

Vacuum of Power: The Rise of AuraStealer Amidst the 2026 Infostealer Dominance Struggle

The Unstoppable Hive: Aeternum C2 Abandons Servers to Command Botnets via the Polygon Blockchain

The Silent Pivot: Global SystemBC Botnet Ensnares 10,000+ IPs, Including Government Portals

The “Async” Surge: January 2026 Telemetry Reveals a Global Explosion in AsyncRAT Command Nodes

The Dragon’s Hub: Researchers Unmask 18,000 Malicious C2 Servers Inside China

You may have missed

The War for Your Documents: Why The Document Foundation is Challenging Microsoft’s OOXML Monopoly

Urgent Patch: Microsoft Defender Update Fixes Critical SYSTEM-Level Privilege Escalation Flaw

The Pre-Boot Breach: Microsoft Releases Critical Emergency Script to Defend Against “YellowKey” BitLocker Bypass

The Reddit Clone: Meta Secretly Launches “Forum” App to Unbundle Facebook Groups