The RondoDox botnet has dramatically evolved to v2, detected on October 30, 2025, expanding its exploitation arsenal by 650% to over 75 distinct vectors targeting IoT and enterprise devices. Initially observed in September 2024 targeting two DVR exploits, it now exploits a decade-spanning range of CVEs, including Shellshock (CVE-2014-6271), Dasan GPON (CVE-2018-10561), and emerging critical flaws in TBK DVRs (CVE-2024-3721). This escalation shifts RondoDox from an IoT-focused threat to a sophisticated enterprise menace aimed at routers, WebLogic servers, QNAP NVRs, and surveillance firmware. Originating from IP 124.198.131.83, New Zealand honeypots recorded its automated, multifaceted attack chain. Analysis by Beelzebubs AI deception platform reveals advanced attacker engagement techniques, while FortiGuard Labs and Trend Micro confirm its rapid growth and broad exposure across critical infrastructure vulnerabilities. For India, this signals heightened cyber risk to both civilian and defense digital assets, emphasizing urgent bolstering of IoT and enterprise cybersecurity defenses.