While i’ve been on phone calls and working today as people also came today, Brian Krebs posts this on Mastodon today as well.
BrianKrebs: Haha, wow. Treasury just sanctioned 3 Chinese nationals for allegedly running 911S5, a giant botnet that was sold for about a decade as one of the most reliable and cheapest proxy services for routing your traffic through someone else’s (infected) machine.
One of the guys sanctioned by Treasury today I named as the apparent head of 911S5 in China, in a 2022 deep dive on this venerated proxy service. 911S5 imploded less than a week later, saying it had been massively hacked and that all user data was wiped.
https://home.treasury.gov/news/press-releases/jy2375
https://krebsonsecurity.com/2022/07/a-deep-dive-into-the-residential-proxy-service-911/
https://krebsonsecurity.com/2022/07/911-proxy-service-implodes-after-disclosing-breach/
image: a screenshot of the now defunct 911S5 proxy service, which was powered by a giant malware botnet. The homepage has a picture of the globe lit up in blue orange and white, and says the most advanced proxy network: fastest residential IPs in over 190 countries.”
Here are blog posts and podcasts on the subject:
- 911 proxy is back, new name: cloud router: still dangerous
- The Security box, podcast 108: What Happened to all of these proxy services from another podcast?
- What happened to our proxy services?
- The Security Box, podcast 181: Phishing Sites impersonating social media
There are probably others, but these are the ones found that might be of interest.
This is probably going to be huge. Thoughts?
Discover more from The Technology blog and podcast
Subscribe to get the latest posts sent to your email.