Namecheap was tagged in a recent tweet to take down a domain that was hosting Empire malware C2. One user pointed out to Namecheap that a webpage was being used to run Empire malware C2. Namecheap was quick to respond and took care of the domain.
Namecheap is an ICANN-accredited domain name registrar providing domain name registration and web hosting based in Phoenix, Arizona. Namecheap started its journey in the year 2000 literally two decades back and has been successful in providing domain management services across the globe. They provide the best domain at an affordable price with quality service. They are currently managing hosting, security, WordPress, and most importantly protecting these accounts from malware threats.
Malware can be detrimental to retaining cybersecurity. A power shell empire agent C2 is a set of Command and Control Infrastructure tools that the attackers use to keep communicating with the targeted devices. The mechanism of attacks may vary but usually, C2 creates of several communication channels between the compromised device and the threat actor. The communication channels are then used to send manipulative instructions to the compromised devices. The device may also download malicious payloads and channel a way to steal data. C2 can be challenging to detect since they blend in with other types of legitimate traffic such as HTTP/HTTPS or DNS. C2 infected device may act like a ‘Zombie’ where the malware becomes authoritative without the consent of the owner. These ‘Zombie’ machines can be hijacked to perform tasks as directed by the threat actor.
Reports show that Namecheap has been successful in satisfying its customers by “nuking” the C2 compromised web hosting page. The efforts of Namecheap have been appreciated by the Netizens on Twitter.
Namecheap are so good nowadays pic.twitter.com/TjmQ8nluQf
— Kevin Beaumont (@GossiTheDog) June 15, 2022
