Alert: Recent investigations have revealed that malicious actors are exploiting vulnerabilities in the remote management software, SimpleHelp RMM, to compromise systems and networks. Security ...
A SimpleHelp authentication flaw is being exploited to deploy Djinn Stealer, a cross-platform malware targeting cloud, ...
The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp.
A vulnerability in the SimpleHelp remote management software allows unauthenticated attackers to create privileged technician accounts on servers using the OpenID Connect (OIDC) authentication ...
An active phishing campaign has been observed targeting multiple vectors since at least April 2025 with legitimate Remote Monitoring and Management (RMM) software as a way to establish persistent ...
Cyber security firm Huntress has spotted a first-of-its-kind case of a popular server monitoring tool being used to install a backdoor in a Windows system. Researchers at the company observed a threat ...
CISA added two actively exploited vulnerabilities in SimpleHelp remote support software to its Known Exploited Vulnerabilities catalog on April 24, 2026, setting a remediation deadline of May 8 for ...
A threat actor is abusing an employee monitoring application and a remote monitoring and management platform in an attempt to deploy ransomware and steal cryptocurrency. According to researchers at ...
Tenable Research found two flaws in SimpleHelp’s remote-support tool that can be chained together to gain remote code execution on clients’ devices. SimpleHelp has patched them: CVE-2025-36728 in ...