Threat Intelligence , Network Security Industrial-scale SIM farm-as-a-service operation uncovered April 23, 2026 Share By SC Staff (Adobe Stock) Belarus-based software platform ProxySmart has been leveraged to power 87 physical SIM farms around the world as part of an industrial-scale cybercrime operation, according to Infosecurity Magazine . With a web-based control panel, API, and remote access supporting SIM farm-as-a-service, ProxySmart enables device management, customer provisioning, automated IP rotation, network fingerprint spoofing, and plan enforcement, while ensuring countermeasures against bots, reported Infrawatch researchers. "Infrawatch assesses this ecosystem materially lowers the barrier to operating and reselling mobile proxy infrastructure, with limited evidence of meaningful eligibility checks across many downstream providers. The combination of carrier-grade NAT, rapid IP rotation, and multi-carrier availability reduces the effectiveness of IP-centric controls and complicates attribution at scale," said the report. However, such findings were disputed by ProxySmart, which touted itself as a data path proxy management layer. "The infrastructure underpins legitimate work across advertising verification, brand protection, cybersecurity research, fraud-detection model training, and application QA, alongside the downstream providers visible on the public internet," said Proxysmart technical consultant and PR lead Alex Zak. An In-Depth Guide to Network Security Get essential knowledge and practical strategies to fortify your network security. Learn More SC Staff Related Threat Intelligence Over $12M stolen in North Korean crypto heist against web developers SC Staff April 23, 2026 North Korean threat operation HexagonalRodent, which is associated with the state-backed Famous Chollima, has exfiltrated up to $12 million worth of cryptocurrency from Web3 developers between January and March, according to The Record, a news site by cybersecurity firm Recorded Future. Vulnerability Management Discontinued D-Link routers subjected to Mirai botnet targeting SC Staff April 23, 2026 Security Affairs reports that vulnerable end-of-life D-Link DIR-823X routers impacted by the command injection flaw, tracked as CVE-2025-29635, have been targeted by Mirai botnet intrusions since early March, or about a year after the security issue was initially disclosed. Threat Intelligence Chinese, US cyber capabilities reportedly on par SC Staff April 23, 2026 Offensive cybersecurity capabilities wielded by China were noted by the Netherlands' Defence Intelligence and Security Service, or MIVD, to be on parity with the U.S., reports The Record, a news site by cybersecurity firm Recorded Future. Related Events Cybercast Better Threat Intelligence Between Public and Private Sectors On-Demand Event Virtual Conference Nationwide Cybersecurity Summit 2025: Safeguarding America’s Digital Future On-Demand Event Virtual Conference Securing the Future of Finance: Strategies to Counter Modern Cyber Threats On-Demand Event Get daily email updates SC Media's daily must-read of the most current and pressing daily news Business Email By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy . Subscribe Related Terms Account Harvesting Bandwidth Bastion Host Berkeley Internet Name Domain (BIND) Business Email Compromise (BEC) Domain Name Drive-by Download DumpSec Hybrid Attack Password Cracking You can skip this ad in 5 seconds