Command and Control (C2) refers to systems or infrastructure used by cyber attackers to remotely direct and manage compromised devices or networks. These C2 servers enable attackers to send instructions, receive stolen data, and update malware on infected systems. C2 channels can use various communication methods, including HTTP, DNS, or social media platforms, to evade detection. In cybersecurity, detecting and disrupting C2 communications is crucial for preventing further damage, data exfiltration, or lateral movement within a compromised environment. Security teams monitor network traffic and use threat intelligence to identify and block C2 activity, thereby limiting attackers’ ability to control infected assets.