Botnet made up of IoT devices is a veteran of the botnet scene, being named ProxyM and created using the Linux ProxyM malware. Botnet has been active since February 2017 and at one point in late May and early June, had reached a size of 10,000 infected devices. It is unclear if ProxyM’s owners are behind the attacks or if they are merely renting the Botnet. Victims include gaming-related servers, public forums, and websites on various topics. The botnet is part of a rising wave of botnets that have come back to life this fall.
Source: https://www.bleepingcomputer.com/news/security/proxym-botnet-used-as-relay-point-for-sqli-xss-lfi-attacks/