Botnet of 17 Million Devices Dismantled in the Netherlands
Botnet of 17 Million Devices Dismantled in the Netherlands
Publish Date: 2026-05-30 04:16:15
Source Domain: securityaffairs.com
Dutch authorities dismantled a vast botnet consisting of at least 17 million devices by taking down 200 servers in collaboration with the National Cyber Security Centre (NCSC). This significant operation, which included seizing servers from a local provider linked to proxy service Asocks, was prompted by a report from a security researcher. The botnet was primarily using poorly secured devices—including computers, tablets, and smartphones—to route internet traffic and conduct cybercriminal activities such as DDoS attacks and phishing. The investigation revealed the severe issue of ASOCKS, used to hide users’ identities, which complicates detection and prosecution efforts.
The authorities warned of the difficulties in countering such malicious operations because the botnet’s infrastructure made attacks appear legitimate. Steps have been encouraged for users to enhance security by keeping systems updated, employing strong passwords, avoiding suspicious sites, and monitoring connected devices with security tools. In previous findings, HUMAN Security linked the Proxylib botnet to ASOCKS, uncovering 28 Android apps exploiting Google Play devices without consent.
Key Points:
– A massive botnet comprising 17 million devices was dismantled in the Netherlands.
– Authorities seized 200 servers operationalizing the botnet infrastructure.
– The investigation was initiated by a report to NCSC followed by joint efforts with police.
– The botnet was linked to the proxy service Asocks used for illegitimate identity concealment.
– Recommendations were issued to users for enhancing cybersecurity awareness and practices.
