The Future and Past of Residential Proxies
Residential proxies is the largest security challenge we are currently facing. Dozens of attacks against our infrastructure have been originated in residential proxy providers including volumetric application layers attacks, heavy pen tests, intrusion attempts or non-consented scraping. When we manage to back-trace the attacks to residential providers we obtained similar response to our reporting: “thanks for reporting, we are ethical providers, leave us alone”.
Qurium exposes the residential proxy economy behind the next generation of botnets
Qurium publishes today a new investigation showing how residential proxy networks, Android supply-chain malware, and DDoS botnets are no longer separate problems. They are now part of the same abuse economy. Our research traces how compromised consumer devices, proxy SDKs, grey-market proxy providers, and botnet operators feed one another. KimWolf is not the story. KimWolf is the warning sign.
Proxy.vn’s hidden Tin-Roof datacenter fueling fake accounts behind the recent attack on iStories.media
Qurium has completed a forensic investigation into the DDoS attacks targeting the Russian investigative media iStories in early November 2025. The investigation links the attacks to Proxy.vn, a Vietnamese proxy network built to exploit residential and mobile internet infrastructure at national scale.
Proxy.vn’s hidden Tin-Roof datacenter fueling fake accounts and DDoS attack on iStories.media
The Russian investigative media iStories received a series of Denial of Service attacks in early November 2025. At peak the website was flooded by more than 30.000 IP addresses. Although the attack infrastructure was globally distributed, a large portion of the flooding botnet was geo-located in Vietnam. Follow us on a journey to the tin-roof data center industry in Vietnam.
Proxy provider Biterika connected to state sanctioned research center linked to attack against investigative media
On June 19, Russian independent media outlets IStories and Verstka published a joint investigation detailing how a sprawling network for selling sex with minors was built in Russia and how some of its high-profile clients — such as Russian oligarch and billionaire Oleg Deripaska — had escaped justice. Within hours of publication, both organizations suffered […]
Proxy provider connected to state sanctioned research center linked to attack against investigative media
Russian independent media outlets came under DDoS attack after publishing an investigation revealing how Russian oligarch and billionaire Oleg Deripaskaex been buying sex with minors.
Denial-of-Service Attacks on Investigative Media Traced to yet another Proxy Provider
Investigative media outlets Armando.info (Venezuela) and IDL Reporteros (Pero) have been targeted by a series of denial-of-service attacks. The DDoS attacks were once again traced to infrastructure operated by a proxy provider who lack adequate control over how their services are used by paying clients.
Yet another proxy provider behind the iStories DoS attacks
iStories, independent Russian media outlet specializing in investigative journalism targeted by DDoS attack launched from proxy infrastructure. The very same proxy provider was involved in the DDoS attacks against Russian Meduza one year ago.
Russian exiled media Meduza.io facing repeated DDoS attacks
Meduza is one of the largest and most influential Russian regime critical news site that delivers daily news from all across Russia in Russian and English languages. Meduza operates in exile from its headquarters in Riga, Latvia where most of its newsroom is located. In January 2023, Russia’s General Prosecutor’s Office declared Meduza undesirable in the […]
DDoS attacks against Hungarian media traced to proxy infrastructure “White Proxies”
– Attacks enabled by a stack of rotten actors During April- August 2023, more than 40 Hungarian media websites were targeted by waves of denial of service attacks which brought many of them offline. Nearly all of the targeted news sites had one thing in common – they were critical of the government of Prime […]
