Skip to main content

One Smart Question: How to Stop Ransom Attacks by Blocking Outbound Command & Control Communications

Learn how #cybercriminals use outbound command and control communication (#C2) to perform data exfiltration or encryption for ransom purposes. To protect your network, you can identify and block the Indicators of Compromise (IoC) before they begin outbound communication. Communications with compromised devices on your network can form #botnets that are difficult to combat. These botnets can be used for multiple purposes, including #DDoSAttacks, to harm network and application availability or distract from other nefarious activities by bad actors. Compromised devices can also be used for data exfiltration or data encryption, often used for #ransomware activities. These intrusions can leave behind IoC data in log files and other places, aiding security teams in detecting and investigating these breaches. Stopping communication between malware and its C2 infrastructure is key to combatting cyber threats and minimizing damage. The majority of #DDoSProtection solutions today are cloud-based mitigation services, often from an ISP. This is just one facet of a comprehensive #DDoSMitigation strategy. Leveraging NETSCOUT Arbor Edge Defense (AED) and Atlas Intelligence Feed (AIF) help automatically block inbound and outbound DDoS threats. Learn more at