Security news aggregator

Latest coverage for Command and Control

Discover the latest trends on Command and Control in cyber security, your hub for infosec insights, threats, and defense strategies.

212 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Command and Control is a term used in cybersecurity to describe the infrastructure through which attackers maintain communication with compromised systems and direct their actions within a target network. In the context of information security, Command and Control (often abbreviated as C&C or C2) mechanisms enable perpetrators to exert remote control over malware installed on victim devices, forming a network of controlled systems called a botnet.

These systems can be instructed to execute malicious activities, such as data exfiltration, deploying additional malware, spreading across the network, or launching Distributed Denial of Service (DDoS) attacks. Detecting and disrupting Command and Control communications is a critical aspect of cyber defense, as it can effectively neutralize the threat by cutting off the attacker's ability to execute commands. Security professionals focus on identifying patterns or anomalies in network traffic that could indicate the presence of C&C activity to mitigate these threats.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 212 Filtered view

Malware on approximately 2,000 WordPress sites hid C2 instructions in Steam profile comments using invisible Unicode. GoDaddy researchers spotted a command-and-control infrastructure for a malware campaign abusing Valve’s Steam gaming platform. The experts discovered malware on approximately 1,980 WordPress sites that fetches its instructions by reading Steam Community profile comments, where the actual payload is […]

More from Security Affairs 2 Jun 2026, 5:38 p.m. Incident · 3 stories Command and Control Gaming Malware Research Wordpress

Suspected Russian Crime Group Built Resilient Command-and-Control InfrastructureIn a joint operation, CrowdStrike, Google and Shadowserver Foundation disrupted infrastructure used by the Glassworm cybercrime group, cutting off attackers from victims. The group has wielded a remote access Trojan to repeatedly target developers of widely used open-source software.

More from Bank Info Security 28 May 2026, 6:30 a.m. Incident · 7 stories Command and Control Crowdstrike Google Open Source Remote Access Trojan Russia Supply Chain Trojan Victims Widely Used

CrowdStrike, in partnership with Google and the Shadowserver Foundation, has announced the simultaneous disruption of all command-and-control (C2) channels associated with GlassWorm, a persistent software chain campaign targeting software developers through malicious packages and extensions

More from The Hacker News 27 May 2026, 11:48 p.m. Incident · 7 stories Command and Control Crowdstrike Google Malware Outage Partnership Supply Chain

Glassworm infected developers through poisoned tools and packages until a coordinated takedown killed all four of its C2 channels at once. On May 26, 2026, at 14:00 UTC, CrowdStrike Counter Adversary Operations team, working with Google and the Shadowserver Foundation, killed all four command-and-control channels of the Glassworm botnet at the same time. The timing […]

More from Security Affairs 27 May 2026, 11:35 p.m. Incident · 7 stories Botnet Command and Control Crowdstrike Google Infection Tools

Cybersecurity researchers have flagged fresh activity from a China-aligned threat actor known as Webworm in 2025, deploying custom backdoors that employ Discord and Microsoft Graph API for command-and-control (C2 or C&C) communications

More from The Hacker News 21 May 2026, 12:51 a.m. Incident · 4 stories API Antivirus China Command and Control Government Microsoft Research Symantec Threat Actor
Bank Info Security 2 weeks, 1 day ago

Android Ad Fraud Operation Generates 659M Bid Requests

Researchers Identify 455 Malicious Apps Tied to Global Malvertising CampaignCybercriminals used malicious Android apps to funnel unwitting users to an ad fraud scam that generated up to 659 million daily bid requests, reports Human Security. The scam has spanned 455 malicious Android apps and is linked to 183 threat actor-owned command-and-control domains.

More from Bank Info Security 20 May 2026, 11:00 a.m. Incident · 2 stories Android Command and Control Fraud Research Scam Threat Actor
Bank Info Security 1 month, 1 week ago

Unwary Chinese Hackers Hardcoded Credentials into Backdoors

Eset Researchers Discover Trove of Go-Based MalwareResearchers uncovered a Chinese-linked cyberespionage group after attackers left command and control credentials embedded in malware, exposing internal operations, testing environments and thousands of messages tied to campaigns targeting a Mongolia government agency.

More from Bank Info Security 23 Apr 2026, 10:00 p.m. Incident · 4 stories Antivirus China Command and Control Credentials Government Malware Research

Cybersecurity researchers have discovered a new campaign in which a cluster of 108 Google Chrome extensions has been found to communicate with the same command-and-control (C2) infrastructure with the goal of collecting user data and enabling browser-level abuse by injecting ads and arbitrary JavaScript code into every web page visited

More from The Hacker News 14 Apr 2026, 8:35 p.m. Incident · 3 stories Abuse Chrome Command and Control Google JavaScript Research Theft

The Russian threat actor known as APT28 (aka Forest Blizzard and Pawn Storm) has been linked to a fresh spear-phishing campaign targeting Ukraine and its allies to deploy a previously undocumented malware suite codenamed PRISMEX

More from The Hacker News 9 Apr 2026, 1:50 a.m. Incident · 11 stories Abuse Antivirus Cloud Command and Control Malware Phishing Russia Threat Actor Trend Micro Ukraine