Hackers Exploiting SimpleHelp Vulnerabilities to Deploy Malware on Systems

[Shane1145]

Cybercriminals are actively exploiting vulnerabilities in SimpleHelp Remote Monitoring and Management (RMM) software to infiltrate networks, create unauthorized administrator accounts, and deploy malware, including the Sliver backdoor.

These flaws, identified as CVE-2024-57726, CVE-2024-57727, and CVE-2024-57728, were disclosed in early January 2025 by researchers at Horizon3.ai.

https://gbhackers.com/hackers-exploitin ... abilities/