2 reports · 2 sources · tracked since 9h ago Actively exploited

Critical SimpleHelp flaw exploited to deploy new stealer malware

AI synthesis Critical SimpleHelp flaw CVE-2026-48558 exploited to deploy Djinn Stealer, a cross-platform infostealer targeting cloud and AI credentials.

vulnerabilitymalwarecloudmicrosoft CVE-2026-48558

Why this ranks Transparent score: 19

coverage +6 source breadth +4 urgency +5 freshness +4

What changed

Coverage timeline

Every report remains linked to its original publisher.

BleepingComputer Jun 29, 2026, 2:00 PM UTC First observed

Critical SimpleHelp flaw exploited to deploy new stealer malware ↗

Hackers are exploiting a recently disclosed critical vulnerability (CVE-2026-48558) in SimpleHelp to deploy Djinn Stealer, a previously undocumented cross-platform information stealer targeting Windows, macOS, and Linux. [...]
Dark Reading Jun 29, 2026, 9:29 PM UTC Coverage expanded

'Djinn' Stealer Targets Cloud, AI Credentials ↗

The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp, targeting credentials linking development and admin environments to wider enterprise systems.

Coverage timeline

Critical SimpleHelp flaw exploited to deploy new stealer malware ↗

'Djinn' Stealer Targets Cloud, AI Credentials ↗