216.73.217.50

Socks5Systemz Botnet Powers Illegal Proxy Service with 85,000+ Hacked Devices

· Published 09/12/2024 13:12 · Modified 09/12/2024 18:02

Export JSON

Essential information

Published
09/12/2024 13:12
Modified
09/12/2024 18:02
Tags
2024-12-09 amadey botnet cybercrime exit nodes hacked devices privateloader proxy service proxy.am smokeloader socks5systemz
Related entities
2 observables, 1 intrusion sets (apt), 9 techniques (mitre), 4 malware, 18 others

Description

A malicious called is operating a named , utilizing over 85,000 compromised devices. The , active since 2013, aims to turn infected systems into proxy for cybercriminals seeking to obscure their attack sources. Initially boasting around 250,000 machines, the 's size has decreased due to a loss of control and subsequent rebuilding. offers 'elite, private, and anonymous proxy servers' for monthly fees ranging from $126 to $700. The primarily affects countries like India, Indonesia, Ukraine, and Algeria. This revelation follows recent discoveries of similar malware-powered proxy services, highlighting the ongoing threat of botnets and proxy abuse in activities.

External references