Post #8359

💻 Iran-linked APT Infy paused C2 ops during Iran’s Jan internet blackout — then rebuilt infrastructure as access returned. Timing ties activity to state network controls. Latest malware uses Telegram + HTTP for dual-channel C2. 🔗 Timeline, tooling evolution, infra rebuild → https://thehackernews.com/2026/02/infy-hackers-resume-operations-with-new.html