Djinn Infostealer Exploits SimpleHelp Auth Bypass to Harvest Cloud and AI Credentials
Djinn infostealer leverages CVE-2026-48558 authentication bypass in SimpleHelp to steal cloud and AI credentials from development and admin environments.
Attack Brief
TargetSimpleHelpVectorAuthentication bypass vulnerability (CVE-2026-48558) delivering infostealer payloadAttributionunattributed
Technical Details
CVE IDsCVE-2026-48558IoCsDjinn
Impact
Confirmed DamageTheft of cloud and AI credentials from development and admin environments with access to enterprise systems
Source
https://www.darkreading.com/cyberattacks-data-breaches/djinn-stealer-targets-cloud-ai-credentialson 2026-06-29T00:00:00Z3 sources