DragonForce Exploits SimpleHelp Vulnerabilities in Ransomware Campaign (Campaign)

[email protected] (Wiz Threat Research) 2025-05-28T00:00:00+00:00 View Original

Full Report

DragonForce gained access to an MSP’s SimpleHelp instance and weaponized its remote management capabilities to deliver a malicious installer to client environments. Once executed, the installer enabled credential harvesting, network reconnaissance, and ransomware deployment. T...

Analysis Summary