Log4Shell threat activity targeting VMware Horizon, UK researchers warn

Threat actors are exploiting Log4Shell vulnerabilities in VMware Horizon, a virtual desktop application, to create web shells and launch ransomware attacks, according to NHS Digital, the UK health system’s IT partner. The Cybersecurity and Infrastructure Security Agency (CISA) and other government and private industry officials are investigating the potential risks to federal agencies and critical infrastructure. Security advisories suggest the threat is particularly potent as attackers can exploit the Log4j vulnerability with low levels of sophistication or experience.