The FBI has seized hundreds of domains belonging to NetNut, a residential proxy service operated by Israeli firm Alarum Technologies, following discoveries linking the platform to the Popa botnet comprising millions of compromised devices.
The action represents a coordinated effort between federal law enforcement and industry partners to dismantle infrastructure connected to malicious activity. NetNut operated as a proxy service offering users the ability to route internet traffic through residential IP addresses, a capability that can mask user identity and location.
Security researchers identified NetNut's connection to the Popa botnet roughly two weeks before the seizure, according to findings published by KrebsOnSecurity. The botnet comprises at least two million compromised devices infected with malicious software.
Alarums Technologies, the parent company of NetNut, is publicly traded on NASDAQ under ticker symbol ALAR. The seizure marks a significant enforcement action against a company operating in the proxy service sector, which has faced increasing scrutiny over potential misuse for cybercrime, fraud, and evading security systems.
The FBI's action underscores ongoing tensions between legitimate proxy service operations and their exploitation by malicious actors. Residential proxies route traffic through actual home internet connections, making detection and blocking more difficult than traditional data center proxies.
The seizure included hundreds of domains, suggesting NetNut maintained extensive infrastructure to support its operations. The takedown likely disrupts services for both legitimate and illicit users relying on the platform.
This enforcement action follows a broader pattern of law enforcement targeting proxy services and botnet infrastructure. Earlier cases have demonstrated the challenges in distinguishing between legitimate privacy tools and platforms facilitating criminal activity.
Surveillance technology company Flock Safety did not issue a cease-and-desist letter to The Saturday Salon, a Newport Beach lecture series, despite claims posted on Instagram Thursday. The incident reignites debate over the company's practices and relationship with law enforcement.
The US Cybersecurity and Infrastructure Security Agency revealed it lacked a prepared incident response plan during a recent security event, forcing it to develop procedures in real time.
Research reveals that terrorist group Boko Haram is leveraging advanced AI technologies to enhance operational capabilities. A new report documents how the organization has integrated frontier AI systems into recruitment, planning, and execution efforts.
Researchers have discovered six vulnerabilities in U-Boot, a bootloader used across millions of devices, that could allow attackers to execute malicious code during device startup. The flaws could enable persistent malware installation while bypassing security protections.