Security News

Law enforcement takes down proxy botnets used by criminals
2025-05-12 18:07

US and Dutch law enforcement, with the help of Lumen researchers, have disrupted 5socks and Anyproxy, two proxy-for-rent services that were used by criminals for ad fraud and DDoS and brute-force...

Feds disrupt proxy-for-hire botnet, indict four alleged net miscreants
2025-05-10 14:02

The FBI also issued a list of end-of-life routers you need to replace Earlier this week, the FBI urged folks to bin aging routers vulnerable to hijacking, citing ongoing attacks linked to TheMoon...

BREAKING: 7,000-Device Proxy Botnet Using IoT, EoL Systems Dismantled in U.S. - Dutch Operation
2025-05-09 16:28

A joint law enforcement operation undertaken by Dutch and U.S. authorities has dismantled a criminal proxy network that's powered by thousands of infected Internet of Things (IoT) and end-of-life...

FBI: End-of-life routers hacked for cybercrime proxy networks
2025-05-08 22:15

The FBI warns that threat actors are deploying malware on end-of-life (EoL) routers to convert them into proxies sold on the 5Socks and Anyproxy networks. [...]

BADBOX 2.0 Botnet Infects 1 Million Android Devices for Ad Fraud and Proxy Abuse
2025-03-18 10:01

At least four different threat actors have been identified as involved in an updated version of a massive ad fraud and residential proxy scheme called BADBOX, painting a picture of an...

Socks5Systemz Botnet Powers Illegal Proxy Service with 85,000+ Hacked Devices
2024-12-09 10:44

A malicious botnet called Socks5Systemz is powering a proxy service called PROXY.AM, according to new findings from Bitsight. "Proxy malware and services enable other types of criminal activity...

Ngioweb Botnet Fuels NSOCKS Residential Proxy Network Exploiting IoT Devices
2024-11-19 14:01

The malware known as Ngioweb has been used to fuel a notorious residential proxy service called NSOCKS, as well as by other services such as VN5Socks and Shopsocks5, new findings from Lumen...

State hackers turn to massive ORB proxy networks to evade detection
2024-05-22 17:37

Security researchers are warning that China-linked state-backed hackers are increasingly relying on a vast proxy server network created from virtual private servers and compromised online devices for cyberespionage operations. Called operational relay box networks, these proxy meshes are administered by independent cybercriminals that provide access to multiple state-sponsored actors.

Okta Warns of Unprecedented Surge in Proxy-Driven Credential Stuffing Attacks
2024-04-28 13:52

Identity and access management (IAM) services provider Okta has warned of a spike in the "frequency and scale" of credential stuffing attacks aimed at online services. These unprecedented attacks,...

TheMoon Botnet Resurfaces, Exploiting EoL Devices to Power Criminal Proxy
2024-03-29 12:12

A botnet previously considered to be rendered inert has been observed enslaving end-of-life (EoL) small home/small office (SOHO) routers and IoT devices to fuel a criminal proxy service called...