Critical Vulnerability in SimpleHelp Lets Hackers Create Fake Support Accounts
Photo: BleepingComputer
Quick answer
A critical vulnerability in SimpleHelp's remote administration software allows attackers to create privileged support accounts without authentication through OpenID Connect (OIDC).
Cybersecurity experts have identified a severe flaw in the widely used SimpleHelp remote administration software. The vulnerability affects servers using OpenID Connect (OIDC) for authentication, allowing attackers to create technician-level accounts without verification. This grants unauthorized access to corporate systems.
SimpleHelp is commonly deployed by companies for remote technical support and IT infrastructure management. Exploiting this flaw could lead to unauthorized access to sensitive data and full network compromise. The ability to create fake accounts with elevated privileges poses a particularly high risk.
SimpleHelp developers have already released a patch to address this vulnerability. Users are urged to update to the latest version immediately and scan systems for suspicious accounts. Experts also recommend enhancing server activity monitoring where this software is installed.
Common questions
- What vulnerability has been discovered in SimpleHelp?
- The vulnerability allows unauthorized users to create admin-level accounts on servers using OpenID Connect (OIDC) for authentication in SimpleHelp.
- What are the consequences of exploiting this vulnerability?
- Attackers could gain full control over servers, access sensitive data, and launch further attacks on the company's infrastructure.
- How can this vulnerability be mitigated?
- Users should update SimpleHelp to the latest patched version and audit accounts for unauthorized access.
Dzen feed: /feed/dzen.xml · RSS: /feed.xml