{"id":209152,"date":"2026-02-02T06:59:00","date_gmt":"2026-02-02T11:59:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/02\/02\/proxy-botnet-office-zero-day-mongodb-ransoms-ai-hijacks-new-threats\/"},"modified":"2026-02-02T11:00:11","modified_gmt":"2026-02-02T16:00:11","slug":"proxy-botnet-office-zero-day-mongodb-ransoms-ai-hijacks-new-threats","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/02\/02\/proxy-botnet-office-zero-day-mongodb-ransoms-ai-hijacks-new-threats\/","title":{"rendered":"Proxy Botnet, Office Zero-Day, MongoDB Ransoms, AI Hijacks &#038; New Threats"},"content":{"rendered":"<p><a href=\"https:\/\/thehackernews.com\/2026\/02\/weekly-recap-proxy-botnet-office-zero.html\">Proxy Botnet, Office Zero-Day, MongoDB Ransoms, AI Hijacks &#038; New Threats<\/a><\/p>\n<p><a href=\"https:\/\/thehackernews.com\/2026\/02\/weekly-recap-proxy-botnet-office-zero.html\">https:\/\/thehackernews.com\/2026\/02\/weekly-recap-proxy-botnet-office-zero.html<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-02-02 06:59:00<\/a><\/p>\n<p>Source Domain: <a href=\"thehackernews.com\">thehackernews.com<\/a><\/p>\n<p><span class=\"p-author\">\ue804<span class=\"author\">Ravie Lakshmanan<\/span>\ue802<span class=\"author\">Feb 02, 2026<\/span><\/span><span class=\"p-tags\">Hacking News \/ Cybersecurity<\/span><\/p>\n<p>Every week brings new discoveries, attacks, and defenses that shape the state of cybersecurity. Some threats are stopped quickly, while others go unseen until they cause real damage.<\/p>\n<p>Sometimes a single update, exploit, or mistake changes how we think about risk and protection. Every incident shows how defenders adapt \u2014 and how fast attackers try to stay ahead.<\/p>\n<p>This week&#8217;s recap brings you the key moments that matter most, in one place, so you can stay informed and ready for what&#8217;s next.<\/p>\n<h2 style=\"text-align: left;\"><strong>\u26a1 Threat of the Week<\/strong><\/h2>\n<p><strong>Google Disrupts IPIDEA Residential Proxy Network <\/strong>\u2014 Google has crippled IPIDEA, a massive residential proxy network consisting of user devices that are being used as the last-mile link in cyberattack chains. According to the tech giant, not only do these networks permit bad actors to conceal their malicious traffic, but they also open up users who enroll their devices to further attacks. Residential IP addresses in the U.S., Canada, and Europe were seen as the most desirable. Google pursued legal measures to seize or sinkhole domains used as command\u2011and\u2011control (C2) for devices enrolled in the IPIDEA proxy network, cutting off operators&#8217; ability to route traffic through compromised systems. The disruption is assessed to have reduced IPIDEA&#8217;s available pool of devices by millions. The proxy software is either pre-installed on devices or may be willingly installed by users, lured by the promise of monetizing their available internet bandwidth. Once devices are registered in the residential proxy network, operators sell access to it to their customers. Numerous proxy and VPN brands, marketed as separate businesses, were controlled by the same actors behind IPIDEA. The proxy network also promoted several SDKs as app monetization tools, quietly turning user devices into proxy exit nodes without their knowledge or consent once embedded. IPIDEA has also been linked to large-scale brute-forcing&#8230;<\/p>\n<p><a href=\"https:\/\/thehackernews.com\/2026\/02\/weekly-recap-proxy-botnet-office-zero.html\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Proxy Botnet, Office Zero-Day, MongoDB Ransoms, AI Hijacks &#038; New Threats https:\/\/thehackernews.com\/2026\/02\/weekly-recap-proxy-botnet-office-zero.html Publish Date: 2026-02-02&#8230;<\/p>\n","protected":false},"author":1,"featured_media":209153,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEhn9uSby99DCwswXd6TJFvm-PoprW_CRTBw9ybmBUQv9frf03WLoy6wgTB5IhjjulguZSLvc72tXk-6OrsFDjg5_Ab1QivwnXKZY16oC4sJ9iKE39MyxSXmXdWZ8o3XdAc4X3vB6-ed7x5WvNt149AgZ7EI7sTg2FDqcWU5HkI9Mli-dDUPUzj_ub_-umx0\/s1700-e365\/recap.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,24,31],"class_list":["post-209152","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-cybersecurity","tag-exploit"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/209152"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=209152"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/209152\/revisions"}],"predecessor-version":[{"id":209154,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/209152\/revisions\/209154"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/209153"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=209152"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=209152"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=209152"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}