May 30, 2026
C2 Hosts: 6
Meterpreter
C2 Infrastructure
Hosting/VPS 74%
ISP/Residential 15%
Business 6%
sinkhole 3%
Unknown 3%
Last 7 days
May 29, 2026
C2 Hosts: 26
May 28, 2026
C2 Hosts: 2
May 26, 2026
C2 Hosts: 4
May 24, 2026
C2 Hosts: 12
| Date | C2 Hosts |
|---|---|
| May 30, 2026 | 6 |
| May 29, 2026 | 26 |
| May 28, 2026 | 2 |
| May 26, 2026 | 4 |
| May 24, 2026 | 12 |
Further Reading
Hunting for GetSystem commands in offensive security tools
Here's how to hunt for GetSystem commands, which employ privilege escalation tactics to grant adversaries access to a victim’s SYSTEM account.
redcanary.com
DangerousSavanna: Two-year long campaign targets financial institutions in French-speaking Africa - Check Point Research
Introduction Recent studies show that more than 85% of financial institutions in Central and Western Africa have repeatedly been victimized in multiple, damaging cyberattacks. In a quarter of these...
research.checkpoint.com
CUBA Ransomware Campaign Analysis — Elastic Security Labs
Elastic Security observed a ransomware and extortion campaign leveraging a combination of offensive security tools, LOLBAS, and exploits to deliver the CUBA ransomware malware.
elastic.co
Operation BarrelFire: NoisyBear Targets Kazakhstan Oil & Gas
Seqrite Labs uncovers Operation BarrelFire by NoisyBear, a cyber-espionage campaign targeting Kazakhstan’s oil & gas sector through phishing and malware.
seqrite.com
How Cybercriminals Abuse Cloud Tunneling Services | Trend Micro (US)
Our research examines how cloud tunneling services work and how organizations can thwart threats that abuse them.
trendmicro.com
Russia’s Fancy Bear Hackers Likely Penetrated a US Federal Agency
New clues indicate that APT28 may be behind a mysterious intrusion that US officials disclosed last week.
wired.com