VYPR
trendPublished Jul 6, 2026· 1 source

Weekly Security Recap: Proxy Botnets, Browser Ransomware, AI Agent Exploits, and More

This week's security landscape was marked by the disruption of the NetNut residential proxy network, novel AI-driven ransomware, and the exploitation of trust mechanisms in various software and AI systems.

This week's security news highlights a concerning trend: the exploitation of ordinary, trusted components and systems for malicious purposes. From residential proxy networks leveraging home devices to AI agents being tricked by malicious instructions, the common thread is a failure in trust mechanisms, often placing trust one layer too early.

The NetNut residential proxy network, estimated to comprise at least 2 million devices globally, was disrupted by a multi-partner effort including Google and the FBI. NetNut, also known as Popa, distributed SDKs for devices commonly found in homes, such as smart TVs and streaming boxes, embedding malware or proxy code. This allowed threat actors to route malicious traffic through these compromised devices, masking their activities. Google disabled associated Google services used by NetNut for command-and-control (C2) and updated Google Play Protect to disable applications containing NetNut SDKs.

In the realm of browser security, a novel ransomware technique has emerged, generated by an AI model. This ransomware operates entirely within the browser on Windows, Linux, macOS, and Android devices by exploiting the picker-based File System Access API, a feature present in Google Chrome and other Chromium-based browsers. While currently theoretical and not observed in the wild, this development signifies a fundamental shift in how AI can be used to discover and weaponize legitimate platform features into attack vectors.

Another concerning development involves malware hidden within seemingly clean code dependencies. Security researchers investigating Python-based proof-of-concept (PoC) repositories on GitHub have fallen victim to ChocoPoC RAT. The malware is concealed within a dependency named "skytext" and functions as a full-featured trojan capable of harvesting sensitive data from multiple browsers, including passwords, cookies, and browsing history, as well as executing arbitrary shell commands.

AI agents themselves are not immune to exploitation. Researchers have demonstrated how AI coding agents can be tricked by malicious instructions embedded in clean-looking GitHub repositories, leading to the execution of hidden malware. This highlights the need for enhanced security measures and validation processes for AI systems that interact with external code or data sources.

Beyond these specific incidents, the week saw other notable security events. WhatsApp introduced usernames, aiming to enhance user privacy, but raised concerns about potential impersonation. A new Brazilian banking trojan, Ousaban, was observed targeting Spain and Portugal using fake PDF documents. Additionally, a 19-year-old alleged member of the Scattered Spider hacking group was extradited to the U.S. to face charges related to multiple breaches.

The overarching theme this week is the increasing sophistication and diversification of cyber threats, often leveraging everyday technology and emerging AI capabilities. The disruption of the NetNut network and the emergence of AI-generated browser ransomware underscore the evolving tactics of threat actors and the critical need for robust security practices across all layers of the digital ecosystem.

As the cybersecurity landscape continues to evolve, the exploitation of trust mechanisms, whether in IoT devices, software dependencies, or AI systems, remains a persistent and significant challenge for defenders.

Synthesized by Vypr AI