Aisuru botnet shifts from DDoS to residential proxies

Move over smash-and-grab DDoS—Aisuru just pivoted to a stealthy cash cow: renting hacked home gadgets as “residential proxies” so bad actors look like regular users online. Commenters screamed, “called it!” with one hot take that those record 6.3–30 Tbps attacks were marketing for a botnet-for-rent. The vibe: less fireworks, more profit. The blame game went nuclear. Some roasted ISPs for shipping flimsy routers, others dunked on cheap security cameras with default passwords, and a few scolded homeowners for never updating anything. A minority defended proxies as “legit business tools,” but the loud chorus says they’re now a cover for mass scraping that feeds AI projects—think chatbots trained on everything your browser can fetch. “Congrats, your doorbell now works for AI,” became the meme of the day. Practical voices begged for plain-English tips: How do regular folks spot a compromised TV or router? Meanwhile, skeptical commenters asked if federal blocklists and ISP coordination are too little, too late. The jokes landed hard—“my fridge is freelancing at night,” “LLM = Looted Living Machines”—but the mood is anxious: Aisuru’s shift means your home gadgets could be quietly renting themselves out. Read the original reporting at KrebsOnSecurity and industry notes from Netscout.