Threat agents have been seen systematically taking advantage of vulnerabilities in GeoVision end-of-life (EoL) Internet of Things (IoT) gadgets to incorporate them into a Mirai botnet for executing distributed denial-of-service (DDoS) assaults.
The action, initially detected by the Akamai Security Intelligence and Response Team (SIRT) in early April 2025, entails the manipulation of two operating system commands.