THREATNOIR
Subscribe
Back to Feed
MalwareApr 23, 2026

"Beyond the AI-control surface, the host also preserved the operator’s alerting and command chann...

Bissa scanner malware preserved Telegram C2 channel with hardcoded bot token.

Read at source

Summary

Security researchers discovered that the Bissa scanner malware maintained command and control capabilities through a hardcoded Telegram bot token (bissapwned_bot, ID 8798206332) embedded in its runner scripts. The malware preserved both the AI-control surface and the operator's alerting and command channel, enabling remote operator control via Telegram messaging.

Indicators of Compromise

  • malware — Bissa scanner
  • url — https://t.co/nNSRU8prqZ

Entities

Telegram (technology)