Within the domain of cybersecurity, the term "C2 command and control" holds significant importance, representing the infrastructure utilized by attackers to remotely manipulate compromised systems. This C2 infrastructure eludes detection, granting attackers continuous access to systems, facilitating data theft, and enabling the execution of destructive operations.
To counter such threats, FortiSOAR has comes up with an innovative "C2 Malware Traffic Response Solution Pack" that provides a comprehensive set of investigation and utility playbooks designed to respond effectively to C2 attacks.
The solution pack includes a scenario that illustrates containment and investigation procedures once an outbound connection attempt via a known C2 port is detected. Also, "Investigates C2 Malware Traffic" playbook plays a crucial role in blocking malicious content if indicators associated with the alert are determined to be malevolent.
Ref: https://fortisoar.contenthub.fortinet.com//detail.html?entity=c2MalwareTrafficResponse&version=1.0.0...
