Blogs
-
Read moreA new phishing attack has been discovered where hackers use Webflow’s CDN and fake CAPTCHAs to trick users into entering their credit card details. The attackers manipulate search results to lure victims into clicking malicious PDFs that lead to phishing websites. -
Read moreA serious security flaw in YouTube and Google’s Pixel Recorder API allowed hackers to extract users’ email addresses from their anonymous YouTube accounts. Security researchers found a way to convert hidden Google IDs (Gaia IDs) into email addresses, exposing millions of users to privacy risks. Google has now fixed the issue, but it highlights how interconnected services can create security loopholes. -
Read moreCybercriminals are creating fake Valentine’s Day-themed websites using words like “love,” “gift,” and “Valentine” to steal personal and financial information. These scams include phishing emails, fake online stores, and romance frauds, tricking people into revealing sensitive data or downloading malware. -
Read moreHackers are exploiting QR codes in a new scam called “quishing”, tricking users into scanning fake QR codes that lead to phishing sites, malware downloads, or financial fraud. These attacks are bypassing traditional security measures, making individuals and businesses vulnerable. -
Read moreHackers are using fake virus warnings to scare mobile users into downloading malicious antivirus apps. These scareware attacks create a false sense of urgency, tricking people into installing apps that can steal data, encrypt files, or cause system damage. -
Read moreA newly discovered malware campaign, “FatBoyPanel,” is targeting Indian bank users, stealing Aadhaar numbers, PAN details, ATM PINs, and credit card information. Researchers from zLabs (Zimperium) have identified nearly 900 malware samples designed to trick users into revealing sensitive data. -
Read moreNorth Korean hacking group Kimsuky is using a custom RDP Wrapper and proxy tools to gain persistent, stealthy access to infected computers. This marks a shift in their tactics, moving away from noisy malware to more covert remote access techniques. -
Read moreCybercriminals are using fake Microsoft Active Directory Federation Services (ADFS) login pages to steal usernames, passwords, and MFA codes from employees in education, healthcare, and government organizations. The stolen credentials allow hackers to access corporate email accounts, send phishing emails, and commit financial fraud. -
Read moreThe New York Blood Center Enterprises suffered a ransomware attack on January 26, 2025, forcing it to cancel blood donation drives despite an ongoing blood shortage. The organization is working with cybersecurity experts and law enforcement to restore its systems, but processing times are delayed, and the timeline for full recovery is unknown. -
Read moreWhatsApp has confirmed a sophisticated cyberattack targeting around 90 journalists and activists across 20 countries. Hackers used zero-click spyware, which can infect phones without the user clicking on anything. Meta has taken action against the attackers and is notifying the victims. -
Read moreThe WantToCry ransomware group is targeting unsecured SMB services, encrypting shared files, and demanding ransom payments. Weak passwords and misconfigured networks allow these attacks to succeed. Organizations must secure their SMB settings to prevent data loss and ransomware infections. -
Read moreTata Technologies recently faced a ransomware attack that led to the temporary suspension of some IT services. The company has confirmed that all affected services have been restored, and an investigation is underway to strengthen cybersecurity and prevent future incidents. -
Read moreWe are proud to announce that NPAV Endpoint Security has been awarded the AV-Test Approved Corporate Endpoint Protection Certificate, recognizing its powerful AI-driven defense and real-time threat detection. -
Read moreHackers are actively targeting vulnerabilities in SimpleHelp Remote Monitoring and Management (RMM) software to infiltrate networks. These flaws allow attackers to download/upload files and gain admin-level access. While patches are available, unpatched systems remain at risk. -
Read moreChinese AI startup DeepSeek faced a major cyberattack soon after its successful launch on Wall Street. The attack caused service disruptions, forcing the company to temporarily stop new user registrations. DeepSeek’s popular open-source AI model, DeepSeek-R1, is creating waves in the global market, shaking up the tech industry and affecting major tech stocks. -
Read moreHackers are using SSH tunnels to secretly access VMware ESXi servers, steal data, and deploy ransomware. These servers, which host multiple virtual machines, are critical to businesses but are often not well-monitored. Attackers take advantage of these gaps to lock down systems and demand ransom payments. -
Read moreOn this Republic Day, let’s not only celebrate our nation’s freedom but also safeguard our digital world! In today’s tech-driven era, our digital freedom is as important as our physical freedom. Whether it's your PC, laptop, mobile, or critical servers, keeping them safe is crucial. -
Read moreThe BASHE ransomware group claims to have hacked ICICI Bank, threatening to release sensitive customer data if their demands are not met. This incident raises serious concerns for the banking industry and its cybersecurity measures. -
Read moreCybercriminals are pretending to be IT support using Microsoft Teams to trick employees. They use spam emails, fake calls, and phishing tactics to gain access to company systems and install ransomware. -
Read moreA 66-year-old retired serviceman’s wife from Bengaluru was tricked by cybercriminals who posed as police officers. The scammers accused her of money laundering, put her under "digital arrest," and forced her to transfer ₹35 lakh over five days.
Recent Posts
