Unit 42 , Palo Alto Networks ‘ threat research team , discovered a new malicious campaign targeting IoT devices , using a variant of the well-known mirai botnet (IZ1H9). It is a malware that turns devices running Linux (usually small IoT devices) into bots that can be controlled remotely and used in large-scale attacks .
The variant is called IZ1H9 and was first discovered in August 2018. Since then it has become one of the most active Mirai variants.
Researchers discovered on April 10 a new wave of malicious campaigns, from the same threat actor, using the IZ1H9 variant. This has been happening since at least November 2021.