Phishing Campaign Hits 80+ Orgs Using SimpleHelp and ScreenConnect RMM Tools
An active phishing campaign has been observed targeting multiple vectors since at least April 2025, with legitimate Remote Monitoring and Management (RMM) software as a way to establish persistent remote access to compromised hosts. The activity, codenamed VENOMOUS#HELPER, has impacted over 80 organ
ORIGINAL SOURCE →via The Hacker News
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Trellix confirms source code repo access incident
- [CYBER] Part 10 — Lessons learned building a Kubernetes Auth Gateway
- [CYBER] Strangers want me to install software after I post that I want an app that can ...
- [CYBER] Aave fights court-ordered $73 million ETH freeze, argues ‘a thief does not own what he steals’
- [CYBER] The AI feature is the easy part
- [CYBER] CVE-2026-42146 - CImg Library: Uncontrolled memory allocation via nb_colors field in _load_bmp