NetNut Proxy Network Disrupted, 2 Million Devices Cut Off
A significant disruption to the NetNut residential proxy network occurred this week, impacting an estimated 2 million infected devices. The operation, which involved Google, effectively cut off access to these compromised devices, including Android smartphones, smart TVs, and streaming boxes. NetNut's service allowed users to route their internet traffic through these devices, masking their true IP addresses and providing access to geo-restricted content or for other illicit purposes.
The compromised devices were primarily Android-based, with the network exploiting vulnerabilities or user consent to gain access. The scale of the operation suggests a sophisticated network that had been operating for an extended period, providing a readily available pool of IP addresses for its clients. The disruption is a blow to the infrastructure used for various online activities, ranging from web scraping and market research to potentially more malicious actions like credential stuffing and denial-of-service attacks.
Google's involvement highlights the increasing role of major technology companies in combating the misuse of internet infrastructure. By disrupting NetNut, the operation aims to dismantle a key component of the ecosystem that facilitates anonymized internet access through compromised devices. This action is part of a broader effort to secure the internet and protect users from the exploitation of their devices for unauthorized network access. The long-term impact on the residential proxy market remains to be seen, but such disruptions can force operators to adapt or cease operations.
The exact timeline of NetNut's operation and the specific methods used to compromise the 2 million devices have not been fully detailed. However, the successful disruption by Google and its partners indicates a significant effort in identifying and dismantling such networks. This event underscores the ongoing challenges in securing the internet of things (IoT) devices and mobile ecosystems from being co-opted into botnets or proxy networks.
Original source — read the full reporting at the publisher:
Read on BleepingComputer