SECURITYBLEEPING COMPUTER
SimpleHelp bug lets hackers create rogue remote support accounts
A vulnerability in SimpleHelp's remote management software allows unauthenticated attackers to create privileged technician accounts via the OpenID Connect (OIDC) protocol. This security flaw enables unauthorized access to servers by hackers.
Related Signal
Adjacent reporting
- Critical UniFi OS bug lets hackers gain root without authentication
- New Veeam vulnerability exposes backup servers to RCE attacks
- CISA orders all federal agencies to patch exploited bug in Cisco SD-WAN systems by Sunday
- No fix yet for critical RCE bug in open-source Git service Gogs - exploit module is out
- Patch Now: Critical Flaw in OT Robot OS Gives Attackers Control