An unknown threat actor has been observed exploiting a
recently disclosed maximum-severity security flaw in SimpleHelp to
deliver two previously unreported malware families, TaskWeaver and
Djinn Stealer. The intrusion involves the exploitation of
CVE-2026-48558 (CVSS score: 10.0), a critical authentication bypass
vulnerability impacting the OpenID Connect (OIDC) flow that an
unauthenticated
Read more https://thehackernews.com/2026/06/attackers-exploit-simplehelp-cve-2026.html
