New 'Djinn' Hacking Tool Targets Business Cloud Accounts

A new hacking tool called Djinn is attacking businesses by exploiting a serious security flaw in SimpleHelp, a remote support software that IT departments use to help employees with computer problems. The vulnerability, labeled CVE-2026-48558 (an industry tracking number for this software flaw), allows hackers to bypass login security completely. Once inside, the Djinn stealer targets credentials for cloud services and artificial intelligence tools that connect different parts of a company's systems together. This mainly affects people who work for companies that use SimpleHelp software for technical support. If your workplace uses this tool and has not updated it, hackers could potentially steal login credentials for cloud storage, development tools, and administrative systems.

While this is a business security issue, it could lead to personal information exposure if company systems containing employee data get compromised. Home users who do not use SimpleHelp or work for companies using it are not directly affected. If you work for a company, especially in IT, development, or administration roles, take these steps now:

1. Contact your IT department immediately and ask if your company uses SimpleHelp software and whether it has been updated to fix this vulnerability.
2. Change passwords for any work-related cloud services, especially if you have administrative access.
3. Enable two-factor authentication on all your work accounts if you have not already.
4. Watch for suspicious login attempts or unusual activity in your work email and cloud accounts. For long-term protection, maintain strict separation between work and personal accounts. Never reuse passwords between them. If your company experiences a breach, immediately change passwords on any personal accounts that might use similar login information. Keep personal devices separate from work devices when possible. Report any suspicious emails or requests for login information to your IT security team right away, even if you think it might be nothing.