The REM Proxy network, powered by the SystemBC malware, serves as a major tool for cybercriminals, providing proxies for malicious activities. It primarily targets vulnerable VPS servers and is associated with threat groups like Morpheus ransomware operators. #SystemBC #REMProxy
Keypoints
- REM Proxy is a large proxy network operated by malware called SystemBC, used for malicious activities.
- SystemBC infects both Windows and Linux systems, turning them into SOCKS5 proxies for command-and-control communications.
- The botnet includes over 80 C2 servers and targets mainly compromised VPS from major providers.
- Victims often remain infected for over a month, with many vulnerable to multiple unpatched CVEs.
- The malware is used to facilitate activities like credential theft, spam, and orchestrating large-scale cyberattacks.
Read More: https://thehackernews.com/2025/09/systembc-powers-rem-proxy-with-1500.html