Hackers are abusing global botnets, and can even hide all evidence using ORB networks.

Threat actors are constantly evolving their techniques to go undetected when infiltrating organizations, and new research reveals how persistent groups like Volt Typhoon are evading detection.

Mandiant has seen increased use of operational relay box (ORB) networks to hide indicators of compromise (IoC). These ORBs are essentially a botnet made up of IoT devices, virtual private servers, smart devices, and older routers that no longer receive security updates.

Leave a Reply

Your email address will not be published. Required fields are marked *

scroll to top