Google disabled a global network that used Android cell phones as proxies without users' consent
Compartir:
Google confirmed that it shut down a massive and silent network that was operating without users knowing it on millions of Android phones, computers, and smart devices. The system allowed third parties to use other people's internet connection as if it were their own.
The maneuver was revealed after an investigation that ended with a court order in the United States. The case raised alarms about the risks to digital security and privacy.
El malware permite a los hackers acceder a los dispositivos
What the secret network that ran in the background was
According to Google, Chinese company Ipidea operated what would be the world's largest residential proxy network. In simple terms, it allowed malicious actors to browse using the IP address of other people's devices.
The Wall Street Journal compared the system to an "internet Airbnb", but without consent. Users never knew that their connection was being rented out.
How phones ended up trapped in the network
Most people entered this network by installing free apps, games, or desktop software. Those applications included hidden code that turned the device into an exit node.
Cómo los celulares quedaban atrapados en la red
Once it was active, third parties could redirect their traffic through the victim's phone. This was used to cover up suspicious or outright illegal activities.
Play Protect and Google's response
Google stated that Play Protect, Android's security system, already blocks and removes apps that integrate Ipidea's SDK. It also prevents them from being reinstalled. The problem is that these kits are available to developers and the company paid per download.
El grupo ciber terrorista ''Dark Storm'' aseguró que los ataques seguirán sucediendo
The precedent of the Kimwolf botnet
In 2025, researchers detected a critical vulnerability in devices linked to this network. At least two million devices were hijacked to create the Kimwolf botnet.
That system was used for massive denial-of-service attacks. Specialists described it as one of the most powerful botnets ever detected.
How many devices were affected
After the legal operation, Google estimates that millions of devices were disconnected from the network. The Wall Street Journal estimates that on Android alone there were about nine million.
3. IA integrada para detectar estafas
In addition, the company removed hundreds of applications related to Ipidea from its store.
What Ipidea says and what experts recommend
Ipidea denied illegal activities and claimed that its services were for commercial uses. It acknowledged, however, aggressive marketing strategies in hacker forums.
Google and external specialists agree that the risk to users and national security was too high. They recommend avoiding unknown apps, reviewing permissions, and deleting software that is not used.
