SimpleHelp CVE-2026-48558 RMM Bypass Exploited

SimpleHelp CVE-2026-48558

A critical SimpleHelp CVE-2026-48558 authentication bypass is letting attackers forge a login token and seize a fully authenticated technician session in the remote monitoring and management (RMM) software thousands of managed service providers use to run client networks. CISA added the flaw to its Known Exploited Vulnerabilities catalog on June 29, and researchers have already…

Read More

Legitimate Tool Abuse: Why Threat Actors Use Trusted Tools

legitimate tool abuse

Legitimate tool abuse is becoming a central part of modern cyberattacks. Patch management, penetration testing, and exploit detection remain essential pillars of a mature security programme, but they no longer explain the full exposure picture on their own. Threat actors increasingly abuse legitimate company tools, either at the start of or during their attacks, using…

Read More