Google announced it disrupted IPIDEA, a large residential proxy network that covertly enrolled users’ devices via embedded SDKs and proxy software. Legal action and collaborative technical measures removed control domains, reduced the device pool by millions, and degraded IPIDEA’s proxy operations. #IPIDEA #CastarSDK
Keypoints
- Google disrupted IPIDEA through legal takedowns and partner collaborations.
- IPIDEA embedded SDKs and proxy software in apps to enroll devices as exit nodes without user disclosure.
- The disruption removed millions of devices from the available pool, significantly degrading the network.
- IPIDEA operated multiple SDKs (Castar, Earn, Hex, Packet) and VPN brands including Galleon, Radish, and Aman.
- Google added Play Protect policies and worked with Spur, Black Lotus Labs, and Cloudflare to block domains and C2 infrastructure.
Read More: https://www.securityweek.com/google-disrupts-ipidea-proxy-network/