An Iranian APT is actively targeting unpatched VMWare Horizon systems to exploit Log4j vulnerabilities. The APT is destructive and these attacks often lead to full Ransomware deployment in the victim’s environment.
See the full Sentinel One synopsis here:
FBI Declares Suspected Chinese Hack of U.S. Surveillance System a ‘Major Cyber Incident’ Article Link: https://www.politico.com/news/2026/04/01/fbi-hack-surveillance-system-major-incident-00854237?ref=readtangle.com Researchers Observe Sub-One-Hour Ransomware Attacks Article Link: https://www.infosecurity-magazine.com/news/researchers-subonehour-ransomware/ New
China-Linked Red Menshen Uses Stealthy BPFDoor Implants to Spy via Telecom Networks Article Link: https://thehackernews.com/2026/03/china-linked-red-menshen-uses-stealthy.html FCC Bans New Foreign-Made Routers Over Supply Chain and Cyber
