"Massive 400,000 Proxy Botnet Built With Stealthy Malware Infections"

Researchers have discovered an extensive campaign that distributed proxy server apps to at least 400,000 Windows systems. The devices function as residential exit nodes without the users' permission. A company is charging for the proxy traffic running through the systems. Residential proxies are advantageous to cybercriminals because they facilitate the deployment of massive credential stuffing attacks from new IP addresses. Additionally, they serve legitimate functions such as ad verification, data scraping, website testing, and privacy-enhancing rerouting. Some proxy companies sell access to residential proxies and offer monetary incentives to users who agree to share their bandwidth. This article continues to discuss findings and observations regarding the  400,000 proxy botnet. 

Bleeping Computer reports "Massive 400,000 Proxy Botnet Built With Stealthy Malware Infections"