Trend Micro, a global cybersecurity firm, has issued an alert about a series of concentrated cyberattacks targeting routers and IP cameras in Bahrain. The attacks, observed since late 2024, are part of a wider campaign affecting businesses in Japan and other countries. They are being carried out using a botnet formed from compromised Internet of Things (IoT) devices.
The malware, based on the notorious Mirai and Bashlite strains, exploits vulnerabilities that allow for remote code execution and weak passwords. Once infected, the IoT devices connect to command servers to receive instructions, including launching Distributed Denial of Service (DDoS) attacks and activating proxy services.
According to Trend Micro’s research, the attacks have predominantly affected North America and Europe, with specific focus on the US (17% of attacks), Bahrain (10%), and Poland (9%).