Skip to main content
See every side of every news story
Get Started
SubscribeLogin
Published loading...Updated

Google Dismantles Massive Chinese Cyber Network Linked to Malware

Google's operation reduced IPIDEA's proxy device pool by millions, disrupting over 550 threat groups using the network for espionage and cybercrime.

  • On Jan 28, Google Threat Intelligence Group seized domains and used Google Play Protect, with Google saying, `'We believe our actions have caused significant degradation of IPIDEA's proxy network and business operations, reducing the available pool of devices for the proxy operators by millions.'`
  • IPIDEA operated at least 13 residential proxy brands and enrolled devices via proxy SDKs embedded in apps, sometimes paid for by app developers, while GTIG observed over 550 threat groups using IPIDEA exit nodes in a seven‑day period in January 2026.
  • Google found over 600 Android applications and 3,075 unique Windows files linked to the network, working with Spur, Lumen's Black Lotus Labs, and Cloudflare to map and disrupt IPIDEA's domain resolution.
  • Google said the removals protect millions of consumer devices, aiming to stop exploitation by cybercriminals and disrupting a global marketplace selling access to hijacked consumer devices.
  • GTIG says the move should cripple affiliated operators and resellers, as more than 550 threat groups used IPIDEA and its botnets threaten cybercriminal anonymity.
Insights by Ground AI
Podcasts & Opinions

45 Articles

CyberScoopCyberScoop
Center

Google's disruption rips millions out of devices out of malicious network

Millions of devices used as proxies by cybercriminals, espionage groups and data thieves have been removed from circulation following Google’s disruption of IPIDEA, a China-based residential proxy network. The reduction in available proxy devices came after Google’s Threat Intelligence Group used legal action and intelligence sharing to target the company’s domain infrastructure, Google said in a blog post Wednesday.  Google’s action, aided by C…

Read Full Article
PC MagPC Mag
Lean Left

These Free VPNs, Proxies Used by Criminals to Hijack Users' Connections

Google seizes domains used by the IPIDEA proxy network, which sold access to devices compromised through free VPNs, proxy services, and mobile apps.

·United States
Read Full Article
Wall Street JournalWall Street Journal
Center

Google Aims Knockout Blow at Chinese Company Linked to Massive Cyber Weapon

Company targets global network employed by hackers that often use devices running in homes of everyday Americans

·New York, United States
Read Full Article
The RegisterThe Register
Center

Google cripples IPIDEA proxy network abused by crims

: The Chocolate Factory strikes again, targeting the infrastructure attackers use to stay anonymous

Read Full Article
BleepingComputerBleepingComputer
Center

Google disrupts IPIDEA residential proxy networks fueled by malware

IPIDEA, one of the largest residential proxy networks used by threat actors, was disrupted earlier this week by Google Threat Intelligence Group (GTIG) in collaboration with industry partners. [...]

Read Full Article
Tech RadarTech Radar
Center

Google takes the fight to IPIDEA and removes millions of devices

One of the largest residential proxy services takes a mega hit from Google

·United Kingdom
Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 78% of the sources are Center
78% Center

Factuality Info Icon

To view factuality data please Upgrade to Premium

Ownership

Info Icon

To view ownership data please Upgrade to Vantage

Reuters broke the news in United Kingdom on Wednesday, January 28, 2026.
Too Big Arrow Icon
Sources are mostly out of (0)

Similar News Topics

Cybersecurity icon

Cybersecurity

Crime icon

Crime

Technology icon

Technology

Mobile Phones icon

Mobile Phones

Android icon

Android

Hacking icon

Hacking

Big Tech and Platforms icon

Big Tech and Platforms

News
Feed Dots Icon
For You
Search Icon
SearchBlindspot LogoBlindspotLocal