Home > Data Breach News
146 views 2 secs 0 comments

CISA warns of SimpleHelp ransomware compromises after string of retail attacks

In Data Breach News, Malware Ransomware, News, Vulnerabilities
June 15, 2025
CISA warns of SimpleHelp ransomware compromises after string of retail attacks

The Record reports:

Ransomware gangs have been exploiting a vulnerability in remote device control software SimpleHelp during a recent string of attacks, according to federal cybersecurity officials. 

The Cybersecurity and Infrastructure Security Agency (CISA) warned on Thursday that CVE-2024-57727 — a vulnerability affecting SimpleHelp’s widely-used remote access tools — was exploited to “compromise customers of a utility billing software provider.”

[…]

The report says DragonForce is being used by multiple hacking groups, including well known operations like Scattered Spider, in recent “attacks targeting multiple large retail chains in the UK and the US.”

CISA and the FBI also noted last week that the Play ransomware has been used in conjunction with the exploitation of CVE-2024-57727. 

Read more at The Record.

Related Post
Catastrophic MoD data breach that put up to 100,000 lives at risk finally revealed as superinjunction lifted
Catastrophic MoD data breach that put up to 100,000 lives at risk finally revealed as superinjunction lifted
July, 2025
Ransomware Group Claims Attack on Belk
Ransomware Group Claims Attack on Belk
July, 2025
CISA orders agencies to immediately patch Citrix Bleed 2, saying bug poses ‘unacceptable risk’
CISA orders agencies to immediately patch Citrix Bleed 2, saying bug poses ‘unacceptable risk’
July, 2025
McDonald’s AI Chatbot Breach Exposes 64 Million Job Applicant Chat Records
McDonald’s AI Chatbot Breach Exposes 64 Million Job Applicant Chat Records
July, 2025