In recent turn events, threat actors are using adware bundles, malware or even hacking into Microsoft SQL servers. They are using these to convert devices into proxies that are rented through online proxy services to generate revenue.
The threat actors install a software called “proxyware” to steal a device’s bandwith. This allocates a device’s available internet bandwith as a proxy server. Remote users then can use this proxy server for various tasks, like testing, intelligence collection, content distribution, or market research.
This even facilitates botters as this gives them access to residential IP addresses that have not been backlisted from online retailers.
The device’s owner in return for sharing their bandwith gains a revenue share of the fees charged to customers. Peer2Profit service states that users makes as much as $60,000 per month by installing the company’s software on thousands of devices.
New research reports also asserts that new malware campaigns have emerged that install proxyware to earn money from sharing their victim’s network bandwith.
The attackers on the other hand receive compensation for the bandwith. This happens though the setting up their email address for the user. During this a victim will just notice connectivity slowdowns and hiccups while being unaware of whatever that is going on.
