The Hacker News

Phishing Campaign Hits 80+ Orgs Using SimpleHelp and ScreenConnect RMM Tools

VENOMOUS#HELPER phishing campaign active since April 2025 has impacted 80+ organizations, mainly in the U.S., using ...
Infosecurity Magazine

Fake SSA Emails Drive Venomous#Helper Phishing Campaign

Venomous#Helper attackers impersonate the US Social Security Administration to deploy signed RMM software and maintain ...
Infosecurity-magazine.com

Ransomware Gang Exploits SimpleHelp RMM to Compromise Utility Billing Firm

Ransomware actors have compromised customers of a utility software billing software provider after exploiting a vulnerability in the SimpleHelp Remote Monitoring and Management (RMM) tool. A new ...
CSOonline

Iran cyberespionage group taps SimpleHelp for persistence on victim devices

Group-IB researchers have also identified a previously unknown command and control infrastructure and a PowerShell script that APT group MuddyWater is using for its cyberespionage and IP theft attacks ...
Yahoo

DragonForce ransomware hacks SimpleHelp RMM tool to attack MSPs

Add Yahoo as a preferred source to see more of our stories on Google. In a blog post, Sophos MDR researchers noted they were alerted to the incident when a “suspicious installation” of a SimpleHelp ...