|
|
|
|
|
|
by throwawayapples
1252 days ago
|
|
|
ycxrl.com (registered at godaddy with privacy) is the command-and-control domain mentioned in the article, which currently resolves to 192.53.113.52 (Linode). DNS is run through DOMAINCONTROL.COM, which seems to be a nextcloud instance? |
|
|
https://search.censys.io/search?q=services.ssh.server_host_k...