Gallery

Contacts

405 W. Greenlawn Ave Lansing, Michigan 48910

contact@techjacksolutions.com

+1-616-320-4064

Coordinated research from Lumen Black Lotus Labs, Nokia Deepfield, Synthient, Qurium, and Spur has linked the Popa botnet, a component of the Vo1d Android TV malware ecosystem, to NetNut, a residential proxy service operated by NASDAQ-listed Alarum Technologies (ALAR). According to these researchers, the botnet silently enrolls between 1.5 and 2.5 million consumer Android TV device IP addresses daily as proxy exit nodes without meaningful user consent, routing traffic through approximately 250-300 relay nodes. The hijacked IPs are assessed by researchers to support ad fraud, account takeover, and mass data scraping operations, and this incident is notable because it implicates a publicly traded commercial proxy provider in active botnet infrastructure.

Author

Tech Jacks Solutions