Lazarus distributes Nukesped to VMware Horizon Servers by exploiting Log4J
Lazarus distributes Nukesped to VMware Horizon Servers by exploiting Log4J
Threat Level
Actor Report
For a detailed advisory, download the pdf file here
Summary
Lazarus, a North Korean threat actor group, is deploying Nukesped (aka Manuscrypt) malware on unpatched VMware Horizon servers by exploiting the Log4J remote code execution vulnerability.