Tag: c2

All the articles with the tag "c2".

• TORA Week in Review — Mar 30–Apr 3, 2026

  

  3 Apr, 2026

  A high-tempo week dominated by active C2 resolutions and confirmed SSH-to-C2 pivot chains across production and staging infrastructure, with BlackCat ransomware and QakBot emerging as the primary threat families. Twelve P1 escalations and four confirmed SSH brute-force successes define the shape of the week.

• TORA Week in Review — Mar 23–27, 2026

  

  27 Mar, 2026

  A week dominated by active C2 and ransomware infrastructure contacts across production and staging environments, with a persistent cluster of suppressed phishing noise and one unresolved asset-context gap that recurred across multiple days.