Tech companies working with US law enforcement “significantly degraded” the NetNut residential proxy network as part of an ongoing effort to disrupt the tools cybercriminals use to conceal their activity, say researchers.
The work was carried out by Google, Lumen, Shadowserver, the FBI, and others, and marks a continuation of the IPIDEA proxy network disruption from January.
According to Google Cloud, those working on the operation believe NetNut was among the most popular residential proxy network providers and had at least 2 million devices enrolled in its botnet, comprising mainly small TV-streaming hardware. Crims often use residential proxy networks to make it look like their traffic is actually coming from legit homes and businesses.
Read more…
Source: The Register
Sign up for the Cyber Security Review Newsletter
The latest cyber security news and insights delivered right to your inbox
Related:
- MBDA is refuting the alleged ‘hacking’ of the company’s information systems
August 1, 2022
MBDA is refuting the alleged ‘hacking’ of the company’s information systems, and has filed a report with police of an attempt to blackmail the company. MBDA is the subject of a blackmail attempt by a criminal group that falsely claims to have hacked the company’s information networks. Following the company’s refusal to yield to this blackmail ...
- End-to-end encryption is a ‘disaster’ for counter-terrorism and stops police finding right-wing extremists online
July 13, 2022
End-to-end encryption on messaging apps is a “disaster” for counter-terrorism officials as it stops them finding extreme-right activity online, a new report warns. Extreme right-wing terrorists’ “conspiracy theorist, anti-government outlook” means they are “often aware of what technical security measures they need to employ to avoid detection”, parliament’s Intelligence and Security Committee says in its latest ...
- UK signs deal to share police biometric database with US border guards
July 4, 2022
The UK has signed up to a US plan for sharing police-held biometric data about citizens with US border officials. According to a member of the European Parliament’s Committee on Civil Liberties, Justice and Home Affairs (LIBE), the body met “informally” with representatives of the US Department of Homeland Security this week to discuss the plans. They ...
- De-anonymizing ransomware domains on the dark web
June 28, 2022
Ransomware operators typically constrain their activities to the dark web to conceal their illegal activities. Their public leak sites and victim communication portals are accessible only on The Onion Router (TOR) network via a specific URL that is only available via direct disclosure. This limits access to fellow operators, victims and security researchers who track ...
- Europol: Phishing gang behind several million euros worth of losses busted in Belgium and the Netherlands
June 21, 2022
A cross-border operation, supported by Europol and involving the Belgian Police (Police Fédérale/Federale Politie) and the Dutch Police (Politie), resulted in the dismantling of an organised crime group involved in phishing, fraud, scams and money laundering. The action day on 21 June 2022 led to: 9 arrests in the Netherlands 24 house searches in the NetherlandsSeizures including firearms, ...
- International operation takes down Russian RSOCKS botnet
June 17, 2022
A Russian operated botnet known as RSOCKS has been shut down by the US Department of Justice acting with law enforcement partners in Germany, the Netherlands and the UK. It is believed to have compromised millions of computers and other devices around the globe. The RSOCKS botnet functioned as an IP proxy service, but instead of ...

