Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
TAG-150 Develops CastleRAT in Python and C, Expanding CastleLoader Malware Operations
Malware and Vulnerabilities
September 06, 2025
thehackernews
TAG-150 has been working on CastleRAT since March, with the threat actor leveraging a multi-tiered infrastructure comprising Tier 1 victim-facing C2 servers, as well as Tier 2 and Tier 3 servers that are mostly VPSes, and Tier 4 backup servers.
Read More
TAG-150
CastleRAT
CastleLoader
Publisher
Previous
South Carolina School District Data Breach Affects 31,0 ...
Breaches and Incidents
Next
Two arrested in Egypt as authorities take down Streamea ...
Laws, Policy, Regulations
/https://cyware-ent.s3.amazonaws.com/public_image/infosecurity-magazineb9f87316-b832-4b2b-b703-0be66d65bfa1.jpg)
/https://cyware-ent.s3.amazonaws.com/public_image/therecord7693cacb-9e68-4545-a71e-82e52e3ff104.jpg)
