As announced before, all LAM versions before 8.0 contain a critical remote execution vulnerability. Attackers can run arbitrary code without the need of a valid login.
The security researchers who found the issue will publish details on the exploitation next week. Please urgently upgrade your instances to at least 8.0 (better 8.0.1 as it fixes some bugs) until July 3rd.
After this date LAM instances that are available to the public internet are highly at risk to be exploited.