Bottom line: A critical vulnerability in SimpleHelp is currently under active exploitation on the Internet and requires immediate patches on affected systems.
A vulnerability with maximum risk rating in remote access software SimpleHelp is under active attack. Affected organizations must expect immediate compromise of their systems.
A vulnerability in remote access software SimpleHelp with the highest risk rating (critical) is currently under active exploitation on the Internet. The scope and specific technique of the attacks are not documented in detail in the available information, but the fact of active exploitation is confirmed.
Remote access tools such as SimpleHelp are classified industry-wide as trusted infrastructure and often come equipped with privileged access. Compromise enables attackers direct and extensive control over affected systems and networks. For CISOs, this represents an acute exposure risk for all infrastructures on which SimpleHelp is operational.
The highest risk rating (CVSS 9.0 or higher) underscores the urgency of countermeasures. Organizations should immediately verify whether SimpleHelp is deployed in their environment and apply available patches. Until remediation, isolation or disabling of affected instances should be considered.
Source: www.heise.de · Published 30 June 2026
Lumi AI News — AI-assisted curation pursuant to Article 50 EU AI Act. Paraphrase and classification by Lumi News Pipeline v1.7.2.