The article discusses how cybercriminals are increasingly utilizing VPNs and proxy services instead of traditional bulletproof hosts as law enforcement intensifies efforts to uncover their activities. Researcher Thibault Seret presented at Sleuthcon, emphasizing the shift to using proxies that mask user identities and mix traffic from various sources. While this presents challenges for law enforcement in identifying malicious activity, it also complicates the analysis of web traffic, making it difficult to discern criminal behaviors from legitimate use. These developments reflect a transition in cybercriminal tactics in response to law enforcement pressures.
Rather than relying on web hosts to find ways of operating outside law enforcement's reach, some service providers have turned to offering purpose-built VPNs and other proxy services.
The issue is, you cannot technically distinguish which traffic in a node is bad and which traffic is good.
Collection
[
|
...
]