FBI Seizes NetNut Proxy Platform, Popa Botnet

Curated from Krebs on Security

Residential proxy services often occupy a gray area in infrastructure, but this seizure highlights the severe operational risks they introduce for organizations that rely on them for web scraping or ad verification. When you route traffic through a service like NetNut, you are effectively outsourcing trust to a third party that may be unknowingly hosting malicious infrastructure or becoming a target for law enforcement. The connection to the Popa botnet demonstrates how quickly these networks can become entangled with large-scale cyber threats, potentially exposing your organization to legal scrutiny or reputational damage. For DevOps and security teams, the lesson is clear: external proxy providers are not neutral pipes. You must conduct rigorous due diligence on any third-party routing service, ensuring it does not inadvertently become a vector for compromise or a liability in regulatory investigations.

The Federal Bureau of Investigation (FBI) said today it worked with industry partners to seize hundreds of domains associated with NetNut, a sprawling residential proxy service operated by the publicly-traded Israeli company Alarum Technologies [NASDAQ: ALAR].

— Krebs on Security

Read the full article on Krebs on Security →