> TritonInfoSec News
Home / Jun 30, 2026 / Story
0
#2 BleepingComputer general June 29, 2026 at 14:00 UTC

Critical SimpleHelp flaw exploited to deploy new stealer malware

By Bill Toulas

AI Summary

Threat actors are actively exploiting CVE-2026-48558, a critical authentication bypass flaw in SimpleHelp remote support software, to deploy Djinn Stealer — a previously undocumented cross-platform infostealer targeting Windows, macOS, and Linux systems. Djinn specifically targets cloud and AI credentials, including those linking development and admin environments to broader enterprise infrastructure. Organizations using SimpleHelp should patch immediately, as active exploitation is confirmed and the stealer's cross-platform reach amplifies the blast radius.

Read full article → https://www.bleepingcomputer.com/news/security/hac…

Relevance score: 87.0/100

# More from June 30

  1. 1
    U.S. offers $10 million for hackers targeting WhatsApp, Signal users BleepingComputer
  2. 3
    Hackers now exploit critical Oracle E-Business flaw in attacks BleepingComputer
  3. 4
    Nissan discloses employee data breach linked to Oracle zero-day attacks BleepingComputer
  4. 5
    Microsoft Removes 119 Edge Extensions That Hid Malware in Images and Fonts The Hacker News
  5. 6
    Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw The Hacker News
  6. 7
    Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government Attacks The Hacker News
  7. 8
    Gamaredon Expands Ukraine Attacks with New Malware and Cloud Service Abuse The Hacker News
  8. 9
    236,000 DCloud Uni-App Sites Used in Crypto Scams, Phishing, and Wallet Drainers The Hacker News
  9. 10
    Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer The Hacker News