Skip to main content
Meet us at Black Hat USA 2026— Las Vegas, August 1–6Book a Meeting
Mallory
Back to intelligence
actively-exploited-vulnerabilitygovernment-vulnerability-catalogidentity-authentication-vulnerabilitycredential-stealer-activity

SimpleHelp auth bypass exploited to deploy TaskWeaver and Djinn Stealer

Updated 1h agoFirst seen Jun 29, 20269 sources

CISA added CVE-2026-48558 to its Known Exploited Vulnerabilities catalog after active exploitation of a critical authentication bypass in the SimpleHelp remote monitoring and management platform. The flaw affects SimpleHelp’s OIDC authentication flow because identity tokens are accepted without cryptographic signature verification, allowing a remote unauthenticated attacker to forge tokens and obtain a fully authenticated technician session; in some deployments, the issue can also bypass MFA. CISA set a 2026-07-02 remediation deadline and directed organizations to apply vendor mitigations and follow BOD 26-04 guidance.

Blackpoint Cyber reported that attackers used the vulnerability on Internet-facing SimpleHelp servers to gain technician-level access and deploy an obfuscated Node.js loader called TaskWeaver, which then delivered Djinn Stealer. The malware harvested cloud credentials, SSH keys, API and service account secrets, source control and package registry tokens, browser data, cryptocurrency wallets, and credentials tied to AI development tools across Windows, macOS, and Linux systems. Researchers said the campaign appeared to rely on opportunistic scanning for exposed vulnerable instances, raising concern that compromise of trusted RMM infrastructure could cascade into broader enterprise, cloud, CI/CD, and software supply chain access.

Share:
SimpleHelp auth bypass exploited to deploy TaskWeaver and Djinn Stealer
Stay ahead

Get ahead of threats like this

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.

EVENT TIMELINE

How this story unfolded

7 events from the most recent confirmed update back to the earliest known activity.

7 EVENTS
Jul 1, 20265h ago

SimpleHelp releases patches for CVE-2026-48558

SimpleHelp released fixes for the actively exploited authentication bypass vulnerability CVE-2026-48558 in versions 5.5.16 and 6.0 RC2. The flaw affects deployments using generic OpenID Connect or Azure Active Directory OIDC authentication.

(TLP:CLEAR) Vulnerability Notification - SimpleHelp RMM Authentication Bypass Exploited, CVE-2026-48588 - WaterISAC
Jun 29, 20263d ago

CISA updates KEV entry for Microsoft Defender CVE-2026-33825

In the same 2026-06-29 KEV catalog update, CISA changed the entry for CVE-2026-33825 affecting Microsoft Defender from unknown to known ransomware campaign use. The catalog version advanced to 2026.06.29 and the total listed vulnerabilities increased from 1629 to 1630.

Add Updated KEV Files for 2026-06-29 · cisagov/kev-data@7fcbb76 · GitHub

CISA adds CVE-2026-48558 to the KEV catalog

CISA updated its Known Exploited Vulnerabilities catalog to add CVE-2026-48558, identifying the SimpleHelp authentication bypass as actively exploited. The KEV entry set a remediation due date of 2026-07-02 and directed organizations to apply vendor mitigations and follow BOD 26-04 guidance.

Add Updated KEV Files for 2026-06-29 · cisagov/kev-data@7fcbb76 · GitHub

Blackpoint Cyber publishes findings on active exploitation chain

Blackpoint Cyber disclosed its investigation into the intrusion chain involving exploitation of CVE-2026-48558, the TaskWeaver loader, and Djinn Stealer. The report detailed the malware's credential theft focus and the broader risk to enterprise, cloud, CI/CD, and software supply chain environments.

A Djinn in the Machine: TaskWeaver’s Node.js Intrusion Chain - Blackpoint Cyber

TaskWeaver loader and Djinn Stealer deployed after SimpleHelp compromise

Following initial access via CVE-2026-48558, the attacker used the trusted RMM channel to deploy an obfuscated Node.js loader called TaskWeaver, which retrieved or delivered the second-stage Djinn Stealer payload. Djinn Stealer harvested credentials and sensitive data across Windows, macOS, and Linux systems, including cloud, SSH, package registry, and AI-development-related secrets.

'Djinn' Stealer Targets Cloud, AI Credentials

Attackers exploit SimpleHelp flaw to access internet-facing RMM servers

A recent intrusion campaign exploited CVE-2026-48558, a SimpleHelp OIDC authentication bypass, to obtain technician-level sessions on exposed SimpleHelp servers without valid credentials. The activity appeared to involve opportunistic scanning for vulnerable internet-facing instances.

'Djinn' Stealer Targets Cloud, AI Credentials
Jun 12, 202620d ago

Horizon3.ai discloses SimpleHelp CVE-2026-48558

Horizon3.ai disclosed CVE-2026-48558, an authentication bypass vulnerability in SimpleHelp RMM. The flaw was later reported as actively exploited against internet-facing SimpleHelp servers.

SimpleHelp vulnerability exploited to deliver mighty Djinn Stealer (CVE-2026-48558) - Help Net Security
LINKED ENTITIES

Related entities

Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.

83 LINKEDOpen in app
Threat actors
1 linked
Affected products
36 linked
SimplehelpAzure Active DirectoryNodejsNode.JsMagicinfo 9 ServerElectrumMinioCloudflareSubversionGithubXperienceVercelTerraformAmazon Web ServicesUnified Communications ManagerPowershellCatalyst SD-WAN ManagerAzureDashPythonElectronVaultDockerGithub CliHelmUnified Communications Manager Session Management EditionDefenderConsulEds5000JqueryFlexplmWindchillClaudeClineCodexAws
Organizations
32 linked
SimpleHelpAkamai TechnologiesSalesforceCisco SystemsAmazon Web ServicesBlackpoint CyberHorizon3.aiDigitaloceanPtcSamsung ElectronicsSOCRadarOktaCloudflareAnthropicHashicorpSupabaseMinioOpenaiDockerMicrosoft CorporationGitHubVercelOracleAtomic WalletPulumi CorporationKentico SoftwareLantronixNovo NordiskGoogleRailwayExodus MovementMarimo
Breaches
1 linked
NOVONORDISK-2026-06
The operational view lives in Mallory

See the full picture, correlated to your attack surface.

This page covers what’s public. Mallory adds the parts that aren’t — which of your assets are affected, which threat actors are using it right now, which detections to deploy, and what to do next.
Exposure mapping

Map indicators from this story to your assets and identify affected systems in minutes.

Threat actor evidence

Every observed campaign, victim, and pivot linked to actors named in this story.

Associated malware

Malware, exploits, and IOCs connected to the activity described here.

Detection signatures

YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.

Scheduled alerts

Get matching new stories delivered to your team as they break — not the next morning.

AI threads

Ask questions about this story and take action on the answers.