THE FBI and Google's Threat Intelligence Group successfully disrupted the NetNut proxy network, which co-opted over two million consumer devices to facilitate cybercriminal activities. The operation targeted the network's infrastructure, seizing numerous domains. The Popa botnet, central to the network, utilized compromised Android devices to route malicious traffic through legitimate residential IP addresses.
Security experts indicated ties to Alarum Technologies Ltd, a publicly traded company, which claims its software was intended for consensual bandwidth-sharing. Following the takedown, Google implemented measures to prevent the network's reformation, causing significant operational degradation. Some confusion arose regarding the domain takedown, but experts clarified that both targeted domains were contributory to the botnet's operations.