How C2 servers can impact your IP reputation.
What is this and why are we alerting to it?
Command and Control (C2) servers are used by attackers to manage infected systems (bots). These servers direct the bots to perform harmful tasks, like stealing information or launching attacks. Being associated with a botnet controller can lead to legal actions and investigations, potentially resulting in legal penalties or fines.
How do I resolve this?
KYND will alert you if IP addresses in your organisation have been linked to C2 Servers. Immediate action is needed to isolate and shut down this IP. Strengthening network security and monitoring can help prevent future issues.
Check your KYND ON account or report for a full list of the affected IPs and further information about the risk.
If you think you have resolved this issue you should use the “We’ve fixed this” button to queue the risk for rescanning.