HomeEverything
Equities & FundsCrypto & Digital AssetsAI & TechnologyBusiness & CorporateUS Politics & PolicyGeopolitics & Global RiskMacro, Rates & FXCommodities & EnergyEuropean Politics & MarketsAsia-PacificReal Estate & Property
← All Stories

Google disrupts NetNut proxy network used in malware operations

Created at 2 Jul · 6:11 PM1 source↑ Market-relevant
IN SHORT

Alphabet's Google announced it has significantly degraded the NetNut residential proxy network, which was used to mask malicious online activity. The action, taken in partnership with the FBI and Lumen, disabled accounts and services related to malware command-and-control operations.

✉Newsletter

PiQ Daily

Pick your topics. Get only what matters, on your cadence.

Key Numbers

2017NetNut founded

Who's Involved

Google
disrupted NetNut proxy network used in malware operations
NetNut
residential proxy network targeted by Google
Popa
alternative name for NetNut network
FBI
partnered with Google on the operation
Lumen
partnered with Google on the operation
Alarum Technologies
cybersecurity firm and parent of NetNut
Google disrupts NetNut proxy network used in malware operations

↳ Why This Matters

The disruption of the NetNut proxy network by Google, in collaboration with law enforcement, aims to curb cybercrime by removing a key tool used to mask malicious online activities and reduce the availability of compromised devices for such operations.

Key facts

  • Google has taken action against the NetNut residential proxy network.
  • The network was used to hide and route malicious online activity.
  • Google partnered with the FBI and Lumen for the operation.
  • Accounts and services used in malware command-and-control operations were disabled.
  • Technical intelligence on the group's infrastructure was shared with law enforcement.

Alphabet's Google announced on Thursday that it has significantly degraded the NetNut residential proxy network, which was being utilized to conceal and route malicious online activities. The tech giant stated that this action was undertaken in collaboration with entities including the FBI and Lumen.

Google reported disabling accounts and services associated with NetNut's malware command-and-control operations. The company also shared technical intelligence regarding the group's infrastructure with law enforcement and industry partners to aid broader enforcement initiatives.

Residential proxy networks enable users to route internet traffic through consumer IP addresses, which can obscure the origin of online activity and help bypass security measures. While these networks can serve legitimate purposes, they are frequently abused for cybercrime due to their ability to mask the true source of traffic.

"We believe our coordinated actions have caused significant degradation to NetNut’s proxy network and its business operations, reducing the available pool of devices for the proxy operator by millions," Google stated in a blog post.

NetNut, founded in 2017 as a subsidiary of the Israeli cybersecurity firm Alarum Technologies, offers rotating residential, ISP, mobile, and datacenter proxies.

Frequently asked questions

NetNut is a residential proxy network, also known as Popa, founded in 2017. It allows users to route internet traffic through consumer IP addresses to mask their online activity.

The network was being abused to hide and route malicious online activity, including malware command-and-control operations, by obscuring the true source of traffic.

Google disabled accounts and services related to NetNut's malware operations and shared technical intelligence with law enforcement and industry partners.

Google partnered with the FBI and Lumen, among others, in taking action against the NetNut network.

What Happens Next

01Broader enforcement efforts by law enforcement and industry partners are expected.
02NetNut's business operations and available device pool are expected to remain degraded.

Get the newsletter.

Pick the topics you actually care about. We'll email when there's news worth your time, on the cadence you choose. Cancel any time from your account.

Cadence

How It Developed

Google announced action against the NetNut residential proxy network.
The tech giant disabled accounts and services used in malware operations.
Google shared technical intelligence with law enforcement and industry partners.
The coordinated actions significantly degraded NetNut's proxy network and business operations.

Sources

T1
Google disrupts NetNut proxy network used in malware operationsReuters

Related Stories

Amazon aims for initial Leo satellite internet service this year
2 Jul · 7:09 PM
OpenAI discusses 5% government stake, AI release standards
2 Jul · 12:18 AM
Google, Amazon AI growth increases carbon emissions
2 Jul · 7:30 PM
New macOS malware 'PamStealer' uses stealthy tradecraft
2 Jul · 7:45 PM
Hong Kong's Shun Hing Group hit by cyberattack, impacting 1 million people's data
2 Jul · 4:25 PM