A significant amount of #CastleLoader C2 infrastructure identified by @julianferdinand.bsky.social was tied to #ThreatActivityEnabler ๐ฌ๐ง FEMO IT SOLUTIONS #AS214351 utilising ๐ฉ๐ช aurologic GmbH #AS30823 as their sole upstream provider. One to watch out for!
4
2
1
0