THREATOPS
THREAT OPSThreat News › New MODBEACON RAT Uses gRPC Streaming for Encrypted C2 Traffic

New MODBEACON RAT Uses gRPC Streaming for Encrypted C2 Traffic

lowthehackernewsPublished 2026-07-10

The China-linked cybercrime group known as Silver Fox has been attributed to a new Rust-based remote access trojan (RAR) called MODBEACON.

Chinese cybersecurity company QiAnXin said that while the threat cluster may appear like a low-sophistication, high-activity operation that propagates malware via counterfeit installers using SEO poisoning techniques, it belies their true organizational

MITRE ATT&CK techniques

Original source: https://thehackernews.com/2026/07/new-modbeacon-rat-uses-grpc-streaming.html