Critical Vulnerability (CVE-2026-48558) in SimpleHelp RMM Exploited to Deploy Djinn Stealer Malware

AI-generated NewsSnap summary based on source reporting.
Published: 2026-07-05
Category: technology
Source: Help Net Security

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability (CVE-2026-48558) in SimpleHelp RMM to its Known Exploited Vulnerabilities (KEV) catalog. Attackers are actively exploiting this recently patched authentication bypass flaw to deploy the novel Djinn Stealer malware, which targets credentials for cloud platforms, source control, and AI development assistants across Windows, macOS, and Linux systems.

Want more?

Open NewsSnap.ai for the full app experience, including audio, personalization, and more news tools.

Open NewsSnap.ai