Dark Reading

'Djinn' Stealer Targets Cloud, AI Credentials

The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp.

Ultimate Member WordPress Plugin Vulnerability Affects Up To 200k Sites

A vulnerability in the popular Ultimate Member WordPress plugin enables account takeover by exposing password reset links.