An Iranian APT is actively targeting unpatched VMWare Horizon systems to exploit Log4j vulnerabilities. The APT is destructive and these attacks often lead to full Ransomware deployment in the victim’s environment.
See the full Sentinel One synopsis here:
The 10 Biggest Cyber Stories of 2025: A Year of Record-Breaking Attacks Article Link: https://www.probablypwned.com/article/top-10-cyber-stories-2025-year-in-review The Evolution of Information Security: From Compliance to Resilience Article
Flaw in Hacktivist Ransomware Lets Victims Decrypt Own Files Article Link: https://www.darkreading.com/threat-intelligence/flaw-hacktivist-ransomware-victims-decrypt-files Initial Access Brokers Involved in More Attacks, Including on Critical Infrastructure Article Link:
