A threat actor has been exploiting CVE-2026-48558, a critical SimpleHelp vulnerability, to drop TaskWeaver and Djinn Stealer ...
A SimpleHelp authentication flaw is being exploited to deploy Djinn Stealer, a cross-platform malware targeting cloud, ...
Hackers are believed to be exploiting recently fixed SimpleHelp Remote Monitoring and Management (RMM) software vulnerabilities to gain initial access to target networks. The flaws, tracked as ...
The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp.
A vulnerability in the SimpleHelp remote management software allows unauthenticated attackers to create privileged technician accounts on servers using the OpenID Connect (OIDC) authentication ...
Ransomware actors have compromised customers of a utility software billing software provider after exploiting a vulnerability in the SimpleHelp Remote Monitoring and Management (RMM) tool. A new ...
Criminals are abusing vulnerabilities in the SimpleHelp RMM remote maintenance software to penetrate PCs and networks. IT security researchers have observed a campaign in which devices were initially ...
The US cybersecurity agency CISA has observed attacks on SimpleHelp, Samsung MagicINFO, and D-Link DIR-823X. The exploited vulnerabilities are partly a bit older.
The Cybersecurity and Infrastructure Security Agency (CISA) is urging SimpleHelp customers to patch a known vulnerability following a wave of ransomware attacks targeting downstream customers. The ...
In addition to deploying DragonForce ransomware across "multiple" endpoints, the criminals also stole sensitive data and used double-extortion tactics to pressure victims into paying the ransom, ...
Group-IB researchers have also identified a previously unknown command and control infrastructure and a PowerShell script that APT group MuddyWater is using for its cyberespionage and IP theft attacks ...
Results that may be inaccessible to you are currently showing.
Hide inaccessible results