Web Scouter
Back to News
Security NewsHighIncidentphishing

Phishing Campaign Hits 80+ Orgs Using SimpleHelp and ScreenConnect RMM Tools

UnknownMay 4, 2026(about 2 hours ago)

A phishing campaign, VENOMOUS#HELPER, has impacted over 80 organizations using SimpleHelp and ScreenConnect RMM tools to gain remote access.

An active phishing campaign has been observed targeting multiple vectors since at least April 2025, with legitimate Remote Monitoring and Management (RMM) software as a way to establish persistent remote access to compromised hosts. The activity, codenamed VENOMOUS#HELPER, has impacted over 80 organizations, most of which are in the U.S., according to Securonix. It shares overlaps with clusters

Related News

Rare appeal may shed light on compensable time for remote employees

Unknownin about 22 hours

Seventh Circuit Issues Seminal Decision Holding BIPA Amendment Applies Retroactively

Unknownabout 1 hour ago

Cisco Moves to Acquire Astrix Security to Tackle Non-Human Identity Risks

Unknownabout 1 hour ago

Get Personalized Alerts

Track vendors and receive alerts when security incidents affect your supply chain.

What We Monitor

Security Incidents

Data breaches, ransomware, and unauthorized access

Vulnerabilities

CVEs and vendor security advisories

Compliance Updates

Regulatory changes and certification news

Legal News

Privacy laws and enforcement actions

Vendor Directory

Browse our directory of SaaS vendors with security documentation and compliance information.