@Sempf Assuming this is an honest question: Bad-ish headline, but decent headline graphic explainer. USB malware infects the airgapped environment. Zoho just does the C2 when it is inserted into a non-airgapped system.

If not, please disregard. Not trying to fall into reply guy archetype.