Chinese hacking group APT31 uses mesh of home routers to disguise attacks
A Chinese cyber-espionage group known as APT31 (or Zirconium) has been seen hijacking home routers to form a proxy mesh around its server infrastructure in order to relay and disguise the origins of their attacks.
This is an older (2021) article, but it quotes Ben Koehl, who works at Microsoft's Threat Intelligence Center, indicating that using these bots as proxies makes the attack appear to be coming from domestic IP's to circumvent geoblocking.
I got into this in the couple of other threads and this utilization is in-line with the TP-Link Camaro Dragon thread where Chinese operatives are...
Read more
