The Web Is Broken – Botnet Part 2

Posted by todsacerdoti 8 hours ago

The Web Is Broken – Botnet Part 2(jan.wildeboer.net)

275 points | 139 commentspage 3

api 8 hours ago|

This is nasty in other ways too. What happens when someone uses these B2P residential proxies to commit crimes that get traced back to you?

Anything incorporating anything like this is malware.

reconnecting 6 hours ago|

Many years ago cybercriminals used to hack computers to use them as residential proxies, now they purchase them online as a service.

In most cases they are used for conducting real financial crimes, but the police investigators are also aware that there is a very low chance that sophisticated fraud is committed directly from a residential IP address.

theteapot 4 hours ago||

Are ad blockers like AdBlock, uBlock effective against these?

panstromek 6 hours ago||

I'd expect this to be against app store and google play rules, they are very picky.

rsedgwick 7 hours ago||

I think tech can still be beautiful in a less grandiose and "omniparadisical" way than people used to dream of. "A wide open internet, free as in speech this, free as in beer that, open source wonders, open gardens..." Well, there are a lot of incentives that fight that, and game theory wins. Maybe we download software dependencies from our friends, the ones we actually trust. Maybe we write more code ourselves--more homesteading families that raise their own chickens, jar their own pickled carrots, and code their own networking utilities. Maybe we operate on servers we own, or our friends own, and we don't get blindsided by news that the platforms are selling our data and scraping it for training.

Maybe it's less convenient and more expensive and onerous. Do good things require hard work? Or did we expect everyone to ignore incentives forever while the trillion-dollar hyperscalers fought for an open and noble internet and then wrapped it in affordable consumer products to our delight?

It reminds me of the post here a few weeks ago about how Netflix used to be good and "maybe I want a faster horse" - we want things to be built for us, easily, cheaply, conveniently, by companies, and we want those companies not to succumb to enshittification - but somehow when the companies just follow the game theory and turn everything into a TikToky neural-networks-maximizing-engagement-infinite-scroll-experience, it's their fault, and not ours for going with the easy path while hoping the corporations would not take the easy path.

badmonster 6 hours ago||

do you think there’s a realistic path forward for better transparency or detection—maybe at the OS level or through network-level anomaly detection?

jonplackett 7 hours ago||

How is this not just illegal? Surely there’s something in GDPR that makes this not allowed.

Retr0id 7 hours ago|

iiuc, they do actually ask the user for permission

SoftTalker 45 minutes ago|||

No doubt in a dense wall of text that the user must accept to use the application, or worse is deemed to have accepted by using the application at all.

fc417fc802 5 hours ago|||

Which is ironic considering that I strongly disagree with one of the primary walled garden justifications, used particularly in the case of Apple, which amounts to "the end user is too stupid to decide on his own". Unfortunately, even if I disagree with it as a guiding principle sometimes that statement proves true.

klabb3 2 hours ago||

It’s not about stupidity, but practicality. People can’t give informed consent for 100 ToS for different companies, and keep those up to date. That’s why there are laws.

jt2190 7 hours ago||

I’m really struggling to understand how this is different than malware we’ve had forever. Can someone explain what’s novel about this?

desertmonad 7 hours ago||

That its not being treated like malware.

jt2190 6 hours ago||

In the sense that people are voluntarily installing and running this malware on their computers, rather than being tricked into running it? Is that the only difference?

int_19h 5 hours ago||

They are still tricked into running it, since it's normally not an advertised "feature" of any app that uses such SDKs.

downrightmike 6 hours ago||

I think it is funny that the mobile OS is trying to be as secure as possible, but then they allow this to run on top

proxy_err 6 hours ago||

Its a fair point but very dynamic to sort out. This needs a full research team to figure out. Or you know.. all of us combined!! It is definitely a problem.

TINFOIL: Sometimes I always wondered if Azure or AWS used bots to push site traffic hits to generate money... they know you are hosted with them.. They have your info.. Send out bots to drive micro accumulation. Slow boil..

luckylion 5 hours ago|

I think that's mostly that they don't care about having malicious bots on their networks as long as they pay.

GCE is rare in my experience. Most bots I see are on AWS. The DDOS-adjacent hyper aggressive bots that try random URLs and scan for exploits tend to be on Azure or use VPNs.

AWS is bad when you report malicious traffic. Azure has been completely unresponsive and didn't react, even for C&C servers.

matheusmoreira 4 hours ago||

"Peer-to-business network"! Amazing. uBlock Origin gets rid of this, right?

panny 5 hours ago|

>Apple, Microsoft and Google should act.

Do nothing, win.

They are the primary benefactors buying this data since they are the largest AI players.

More comments...