Critical vulnerability in SimpleHelp remote support software under active attack
UNVERIFIED·Primary source · Heise Online
A critical authentication bypass vulnerability (CVE-2026-48558) in SimpleHelp is being actively exploited.
Attackers are using the flaw to deploy malware like 'TaskWeaver' and 'Djinn Stealer'.
The US CISA has added the vulnerability to its 'Known Exploited Vulnerabilities' catalog.
Key Facts
01
01 — What / Thesis
Critical vulnerability in SimpleHelp remote support software under active attack
02
02 — Who / Subject
SimpleHelp
03
03 — Where / Locus
Global
04
04 — When / Temporality
June 2026
AI Verification Note
This article is generated by cross-referencing multiple sources and official announcements. Parts relying solely on testimony or reporting are reflected in the confidence score; content and assessment are updated as new information is confirmed.