How to Leverage Log Services to Analyze C&C Traffic

Command-and-control (C&C) servers are the machines attackers use to maintain communication with the compromised systems in a target network. These servers issue commands to the compromised systems, ranging from a simple “Are you (still) there?” request to data exfiltration instructions and full remote control commands.

Read full news article on Security Intelligence