The Arma Reforger Workbench has suffered from two major security problems up until the 0.9.6 patch (released on 20.10.2022) that allowed malicious actors to distribute mods to exploit two separate vulnerabilities to 1. steal BI account login credentials in plain text and 2. execute an arbitrary .exe without the user being able to notice in advance. Both are now fixed! Unfortunately Bohemia Interactive has decided to not inform the general public about this in an appropriate way, so this post aims to let modders know about any potential harm they might have been exposed to.
The game itself and thus "normal players" were not affected. Only modders/content creators that launched the Arma Reforger Tools (Workbench) AND used third party mods/dependencies should double check if they were exposed to them.