
Originally published byThe Hacker News
An unknown threat actor has been observed exploiting a recently disclosed maximum-severity security flaw in SimpleHelp to deliver two previously unreported malware families, TaskWeaver and Djinn Stealer.
The intrusion involves the exploitation of CVE-2026-48558 (CVSS score: 10.0), a critical authentication bypass vulnerability impacting the OpenID Connect (OIDC) flow that an unauthenticated
πΊπΈ
More news from United StatesUnited States
NORTH AMERICA
Related News
Secret Claude Tracker Shocks Users After Anthropic's Anti-Surveillance Stance
13h ago
Agent orchestration is so two-years ago
1h ago
Dead-Letter Queues for Webhooks: Safe Replay, Idempotency, and Monitoring
4h ago
The AI Coding Tool You Use Is Now a Hiring Signal
5h ago
Agent frameworks stabilize as Claude Sonnet 5 ships
5h ago