Latest Proxy news

US dismantles 911 S5 botnet used for cyberattacks, arrests admin

The U.S. Justice Department and international partners dismantled the 911 S5 proxy botnet and arrested 35-year-old Chinese national YunHe Wang, its administrator, in Singapore.
- Sergiu Gatlan
- May 29, 2024
- 01:14 PM
- 0
US govt sanctions cybercrime gang behind massive 911 S5 botnet

The U.S. Treasury Department has sanctioned a cybercrime network comprising three Chinese nationals and three Thailand-based companies linked to a massive botnet controlling a residential proxy service known as "911 S5."
- Sergiu Gatlan
- May 28, 2024
- 03:02 PM
- 0
State hackers turn to massive ORB proxy networks to evade detection

Security researchers are warning that China-linked state-backed hackers are increasingly relying on vast proxy networks of virtual private servers and compromised connected devices for cyberespionage operations.
- Ionut Ilascu
- May 22, 2024
- 01:37 PM
- 0
Free VPN apps on Google Play turned Android phones into proxies

Over 15 free VPN apps on Google Play were found using a malicious software development kit that turned Android devices into unwitting residential proxies, likely used for cybercrime and shopping bots.
- Bill Toulas
- March 26, 2024
- 12:33 PM
- 0
TheMoon malware infects 6,000 ASUS routers in 72 hours for proxy service

A new variant of "TheMoon" malware botnet has been spotted infecting thousands of outdated small office and home office (SOHO) routers and IoT devices in 88 countries.
- Bill Toulas
- March 26, 2024
- 11:00 AM
- 0
New proxy malware targets Mac users through pirated software

Cybercriminals are targeting Mac users with a new proxy trojan malware bundled with popular, copyrighted macOS software being offered on warez sites.
- Bill Toulas
- December 03, 2023
- 10:12 AM
- 0
IPStorm botnet with 23,000 proxies for malicious traffic dismantled

The U.S. Department of Justive announced today that Federal Bureau of Investigation took down the network and infrastructure of a botnet proxy service called IPStorm.
- Bill Toulas
- November 14, 2023
- 07:05 PM
- 0
Socks5Systemz proxy service infects 10,000 systems worldwide

A proxy botnet called 'Socks5Systemz' has been infecting computers worldwide via the 'PrivateLoader' and 'Amadey' malware loaders, currently counting 10,000 infected devices.
- Bill Toulas
- November 05, 2023
- 10:17 AM
- 0
EvilProxy uses indeed.com open redirect for Microsoft 365 phishing

A recently uncovered phishing campaign is targeting Microsoft 365 accounts of key executives in U.S.-based organizations by abusing open redirects from the Indeed employment website for job listings.
- Bill Toulas
- October 03, 2023
- 09:00 AM
- 0
Massive 400,000 proxy botnet built with stealthy malware infections

A new campaign involving the delivery of proxy server apps to Windows systems has been uncovered, where users are reportedly involuntarily acting as residential exit nodes controlled by a private company.
- Bill Toulas
- August 16, 2023
- 11:31 AM
- 0
WhatsApp adds proxy support to help bypass Internet blocks

Starting today, WhatsApp now allows users to connect via proxy servers due to Internet shutdowns or if their governments block the service in their country.
- Sergiu Gatlan
- January 05, 2023
- 12:19 PM
- 1
Android malware apps with 2 million installs spotted on Google Play

A new set of Android malware, phishing, and adware apps have infiltrated the Google Play store, tricking over two million people into installing them.
- Bill Toulas
- December 04, 2022
- 10:11 AM
- 1
BlackProxies proxy service increasingly popular among hackers

A new residential proxy market is becoming popular among hackers, cybercriminals, phishers, scalpers, and scammers, selling access to a million claimed proxy IP addresses worldwide.
- Bill Toulas
- December 02, 2022
- 01:56 PM
- 0
Signal calls on users to run proxies for bypassing Iran blocks

Signal is urging its global community to help people in Iran stay connected with each other and the rest of the world by volunteering proxies to bypass the aggressive restrictions imposed by the Iranian regime.
- Bill Toulas
- September 23, 2022
- 11:30 AM
- 0
FBI warns of residential proxies used in credential stuffing attacks

The Federal Bureau of Investigation (FBI) warns of a rising trend of cybercriminals using residential proxies to conduct large-scale credential stuffing attacks without being tracked, flagged, or blocked.
- Bill Toulas
- August 22, 2022
- 02:59 PM
- 2
Microsoft SQL servers hacked to steal bandwidth for proxy services

Threat actors are generating revenue by using adware bundles, malware, or even hacking into Microsoft SQL servers, to convert devices into proxies that are rented through online proxy services.
- Bill Toulas
- July 28, 2022
- 01:26 PM
- 0
Russian RSocks botnet disrupted after hacking millions of devices

The U.S. Department of Justice has announced the disruption of the Russian RSocks malware botnet used to hijack millions of computers, Android smartphones, and IoT (Internet of Things) devices worldwide for use as proxy servers.
- Bill Toulas
- June 17, 2022
- 10:17 AM
- 1
Microsoft creates tool to scan MikroTik routers for TrickBot infections

The TrickBot trojan has just added one more trick up its sleeve, now using vulnerable IoT (internet of things) devices like modem routers as proxies for its C2 (command and control) server communication.
- Bill Toulas
- March 17, 2022
- 08:22 AM
- 0
Mozilla blocks malicious add-ons installed by 455K Firefox users

Mozilla blocked malicious Firefox add-ons installed by roughly 455,000 users after discovering in early June that they were abusing the proxy API to block Firefox updates.
- Sergiu Gatlan
- October 25, 2021
- 04:08 PM
- 5
Ransomware gangs automate payload delivery with SystemBC malware

SystemBC, a commodity malware sold on underground marketplaces, is being used by ransomware-as-a-service (RaaS) operations to hide malicious traffic and automate ransomware payload delivery on the networks of compromised victims.
- Sergiu Gatlan
- December 16, 2020
- 09:00 AM
- 0