Hackers exploit critical SimpleHelp vulnerability to deploy Djinn Stealer targeting AI tools
Threat actors are exploiting CVE-2026-48558, a critical authentication bypass flaw in SimpleHelp, to deploy TaskWeaver malware and Djinn Stealer. The cross-platform information stealer targets developer credentials, cloud infrastructure, and AI coding assistants like Claude, Gemini, and Codex across Windows, macOS, and Linux systems.