There is new malware that’s exploiting a known remote code execution vulnerability (RCE), in VMware Workspace One Access and Identify Manager. This vulnerability is tracked as CVE-2022-22954, and has a severity score of 9.8/10. This flaw, along with a host of other vulnerabilities, was patched in April and is currently being exploited to spread ransomware and cryptominers.
For additional information, technical details and remediation information, see: