UK’s National Health Service has published a cyber alert warning of an unknown threat group targeting VMware Horizon deployments with Log4Shell exploits. The actor is taking advantage of the presence of the Apache Tomcat service embedded within the VMware Horizon. The vulnerability is an exploit for CVE-2021-44228, a critical arbitrary remote code execution flaw in the Apache Log4j 2.14, which has been under active and high-volume exploitation since December 2021. Apache addressed the above and four more vulnerabilities via subsequent security updates.”]