Skip to main content

Tag: command and control

32 articles

DPRK Hackers Exploit GitHub in Multi-Stage Attacks on South Korea

DPRK Hackers Exploit GitHub in Multi-Stage Attacks on South Korea

DPRK hackers have cleverly repurposed GitHub as a secret command center to launch multi-stage attacks on organizations in South Korea. This sneaky tactic starts with obfuscated Windows shortcut files, highlighting the growing creativity of North Korean threat actors.

Analyst 207
GitHub Exploited in Sophisticated Malware Campaign

GitHub Exploited in Sophisticated Malware Campaign

Malicious actors have launched a sophisticated malware campaign that exploits GitHub as a covert command-and-control channel, using trusted platforms to evade detection and wreak havoc on unsuspecting organizations. This multi-stage threat employs LNK files, embedded decoders, and PowerShell to establish persistence and exfiltrate sensitive data.

Analyst 207
ShadyPanda Stunning Scheme Damages 4.3M Chrome & Edge

ShadyPanda Stunning Scheme Damages 4.3M Chrome & Edge

Think twice before clicking Add to Chrome—a sprawling campaign called ShadyPanda used dozens of seemingly helpful browser extensions to secretly siphon data from an estimated 4.3 million Chrome and Edge users. By cloning listings and routing telemetry to shared command-and-control endpoints, attackers turned legit marketplaces into a stealth distribution network that slipped past detection.

Analyst 207
FlexibleFerret Exclusive: Dangerous macOS Go Backdoor

FlexibleFerret Exclusive: Dangerous macOS Go Backdoor

Think a harmless Mac script cant hurt? FlexibleFerret proves otherwise — a modular, multistage campaign that uses staged shell/AppleScript and a Go-based backdoor to quietly harvest credentials and maintain stealthy, long-term access across macOS systems.

Analyst 207
flawless IT support: Must-Have Best Defense

flawless IT support: Must-Have Best Defense

Flawless IT support is a frontline lifeline—when VPNs, patches, or helpdesk queues fail, missions falter and lives are at risk. Investing in resilient networks, rapid response, and user-centered tools is essential to keep warfighters safe and effective.

Analyst 207
modern C2 centers: Must-Have Resilience for Victory

modern C2 centers: Must-Have Resilience for Victory

As battlefields blur and speed trumps certainty, modern C2 centers face three urgent hurdles: turning overwhelming, messy data into rapid, trustworthy decisions; staying resilient when networks and sensors are jammed or hacked; and knitting multinational, misaligned systems into a single, trusted command. Solving them will mean smarter tech, tougher doctrine, and real-world drills that bind militaries, industry and allies together.

Analyst 207
C2 centers: Must-Have Resilience for Best Survival

C2 centers: Must-Have Resilience for Best Survival

When the map is incomplete, radios go quiet, and drones, jammers and deception probe your nerve centers, modern C2 centers face three linked challenges—information overload and trust, contested communications, and coalition interoperability—that will decide whether commanders can see, decide and act faster than the enemy. The Ukraine war shows we must prioritize explainable data fusion, layered resilient comms, and federated interoperability now, or risk losing the advantage on tomorrow’s battlefields.

Analyst 207
Agile Combat Employment: Essential & Risky Shift

Agile Combat Employment: Essential & Risky Shift

Can a force built for big bases learn to fight from improvised strips under missile, cyber, and electronic attack? Agile Combat Employment (ACE) answers with small, mobile teams, palletized maintenance, and decentralized command to make aircraft harder to find, faster to move, and far more resilient in a contested world.

Analyst 207