Proxyjacking has Entered the Chat

Proxyjacking is a rising cyberthreat that exploits proxyware services to monetize compromised internet-connected devices by illegally selling their IP addresses. This method, discovered by Sysdig's Threat Research Team, involves attackers using vulnerabilities, such as the Log4j, to gain initial access, install an agent, and turn devices into proxy servers, which are then sold for profit. Unlike cryptojacking, which focuses on maximizing CPU usage for cryptocurrency mining, proxyjacking primarily utilizes network resources, making it harder to detect. Although proxyware services like IPRoyal claim ethical operation, the ease and profitability of proxyjacking, combined with the low effort required, make it an attractive option for malicious actors. This poses financial and reputational risks to victims, as they may face increased costs and potential legal issues if their IPs are used in illegal activities. The Sysdig team emphasizes the importance of threat detection and setting billing limits to mitigate these risks.