{"uuid": "ae48c4f3-87e7-4624-bc6f-320dd5568577", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48558", "type": "seen", "source": "https://bsky.app/profile/hakksaww.bsky.social/post/3mqajsgwhfh2p", "content": "SimpleHelp CVE-2026-48558 is today's headline. We ran the full chain July 1: OIDC forgery \u2192 TaskWeaver \u2192 Djinn, the AI-key stealer. Primary catch: BlackPoint Cyber's APG. https://www.dugganusa.com/post/a-new-infostealer-is-hunting-your-claude-gemini-and-codex-keys-it-gets-in-through-your-help-desk", "creation_timestamp": "2026-07-09T21:02:24.477183Z"}