Blog Security Research Here Comes Mirai: IoT Devices RSVP to Active Exploitation Kyle Lefton is a security researcher on Akamai's Security Intelligence Response Team. Formerly an intelligence analyst for the Department of Defense, Kyle has experience in cyber defense, threat research, and counter-intelligence, spanning several years. He takes pride in investigating emerging threats, vulnerability research, and threat group mapping. In his free time, he enjoys spending time with friends and family, strategy games, and hiking in the great outdoors. We also observed this botnet attempting to exploit a variety of other vulnerabilities in our honeypots. Executive summary \r\n The Akamai Security Intelligence and Response Team (SIRT) has identified active exploitation of command injection vulnerabilities CVE-2024-6047 and CVE-2024-11120 against discontinued GeoVision Internet of Things (IoT) devices.  \r\n \r\n The SIRT first identified activity in our honeypots in April 2025.…