Infosecurity-magazine.com

Ransomware Gang Exploits SimpleHelp RMM to Compromise Utility Billing Firm

Ransomware actors have compromised customers of a utility software billing software provider after exploiting a vulnerability in the SimpleHelp Remote Monitoring and Management (RMM) tool. A new ...
Infosecurity-magazine.com

MuddyWater Uses SimpleHelp to Target Critical Infrastructure Firms

The Iranian government-sponsored threat actor known as MuddyWater has been observed using the legitimate SimpleHelp remote support software tool to achieve persistence on victim devices. According to ...
Dark Reading

CISA Reveals 'Pattern' of Ransomware Attacks Against SimpleHelp RMM

The Cybersecurity and Infrastructure Security Agency (CISA) is urging SimpleHelp customers to patch a known vulnerability following a wave of ransomware attacks targeting downstream customers. The ...
CSOonline

Iran cyberespionage group taps SimpleHelp for persistence on victim devices

Group-IB researchers have also identified a previously unknown command and control infrastructure and a PowerShell script that APT group MuddyWater is using for its cyberespionage and IP theft attacks ...