The botnet’s shift to targeting vulnerable Java applications in a campaign called “Frog4Shell” poses a significant risk to internal machines that may have been neglected and remained unpatched.