CyberGate
Also known as: Rebhip
According to Subex Secure, CyberGate is a Remote Access Trojan (RAT) that allows an attacker to gain unauthorized access to
the victim’s system. Attackers can remotely connect to the compromised system from anywhere
around the world. The Malware author generally uses this program to steal private information
like passwords, files, etc. It might also be used to install malicious software on the compromised
systems.
C2 Infrastructure
Last 7 days
| Date | C2 Hosts |
|---|---|
| Apr 19, 2026 | 1 |
| Apr 17, 2026 | 1 |
| Apr 16, 2026 | 1 |
Further Reading
RL Blog: AppSec & Supply Chain Security, Dev & DevSecOps, Threat Research, and Security Operations (SecOps)
Report uncovering a South American group targeting politicians, journalists, and civil society with malware campaigns, phishing, and elaborate fake organizations.
Process injection is a widespread defense evasion technique employed often within malware and fileless adversary tradecraft, and entails running custom code within the address space of another proc...
Process injection is a widespread defense evasion technique employed often within malware and fileless adversary tradecraft, and entails running custom code within the address space of another proc...
In this article, Zscaler security research team dissect the custom protocols used in some of the most prevalent RATs seen in recent campaigns. Read more.
The CyberGate RAT and RedLine stealer are being delivered in ongoing campaign using the AutoIt malware. Read more.