https://krebsonsecurity.com/2025/01/infrastructure-laundering-blending-in-with-the-cloud
A new report reveals how Chinese cybercrime groups are exploiting major U.S. cloud providers like Amazon and Microsoft to launder their malicious activities.
This technique, dubbed “infrastructure laundering,” involves funneling malicious traffic through these reputable platforms, making it harder to detect and block.
One such example is Funnull, a Chinese content delivery network that hosts a wide range of malicious content, including fake gambling sites, phishing pages, and other cybercriminal activities.
Funnull leverages the trust associated with major cloud providers to obscure its operations. By routing traffic through these platforms, they can evade detection and make it more difficult to trace their activities back to their source.
This practice raises significant concerns for cybersecurity. It challenges traditional methods of threat detection and mitigation, making it harder for security teams to identify and block malicious traffic.
While cloud providers are taking steps to address this issue, the rapid evolution of these techniques necessitates a more proactive and collaborative approach to combating cybercrime.
This report highlights the growing complexity of the cyber threat landscape and the urgent need for innovative solutions to address these emerging challenges.