{
"$type": "site.standard.document",
"bskyPostRef": {
"cid": "bafyreihd6djaswupacgjxiemjypgumnkofz2xchlak6ewd6auztqvsggzm",
"uri": "at://did:plc:ghkvexthfanuyq7fb5veq6tw/app.bsky.feed.post/3mpj3sttussj2"
},
"coverImage": {
"$type": "blob",
"ref": {
"$link": "bafkreicqjiae5lcou3wnhubfsg4nitmcmvqdrogcgyqmiwd6jxx3po5smm"
},
"mimeType": "image/jpeg",
"size": 331377
},
"path": "/2026/06/attackers-exploit-simplehelp-cve-2026.html",
"publishedAt": "2026-06-30T11:18:47.000Z",
"site": "https://thehackernews.com",
"textContent": "An unknown threat actor has been observed exploiting a recently disclosed maximum-severity security flaw in SimpleHelp to deliver two previously unreported malware families, TaskWeaver and Djinn Stealer.\n\nThe intrusion involves the exploitation of CVE-2026-48558 (CVSS score: 10.0), a critical authentication bypass vulnerability impacting the OpenID Connect (OIDC) flow that an unauthenticated",
"title": "Attackers Exploit SimpleHelp CVE-2026-48558 to Deploy TaskWeaver and Djinn Stealer"
}