Npav Lab - Page 14

CERT-In Mandates Annual Cybersecurity Audits for India’s MSMEs

Posted: September 12, 2025

Categories: Cyber Attack

Tags: fp7a, fp-1a

Author: Npav Lab

India’s MSMEs must comply with new CERT-In rules requiring yearly cybersecurity audits, incident reporting, and employee training to strengthen digital defenses and protect the economy.

Fake Madgicx Plus and SocialMetrics Extensions Hijack Meta Business Accounts

Posted: September 11, 2025

Categories: Browser Hijack, Social Media, Facebook

Tags: fp-3b, fp-3a, fp-2c, fp-2b, fp-1b, fp-1a

Author: Npav Lab

Malicious browser extensions SocialMetrics Pro and Madgicx Plus steal Facebook session cookies and credentials to hijack Meta Business accounts. Learn how these fake tools target advertisers via malvertising and fake websites.

FastNetMon Mitigates Record 1.5 Billion Packets-Per-Second DDoS Attack on Major Scrubbing Vendor

Posted: September 11, 2025

Categories: DDoS

Tags: fp-6c, fp-6b, fp-1b

Author: Npav Lab

FastNetMon detected and helped stop a massive 1.5 billion packets-per-second UDP flood targeting a Western European DDoS mitigation provider. Learn about this record-breaking attack and defense strategies.

Cursor AI Code Editor RCE Vulnerability Enables Automatic Execution of Malicious Code

Posted: September 11, 2025

Categories: vulnerability, AI

Tags: fp-3b, fp-3a, fp-1a

Author: Npav Lab

A remote code execution flaw in Cursor AI Code Editor allows malicious code to run automatically when opening a project. Learn how disabling Workspace Trust exposes developers and how to protect your environment.

Microsoft September 2025 Patch Tuesday Fixes 81 Vulnerabilities Including Two Zero-Days

Posted: September 11, 2025

Categories: vulnerability, Microsoft

Tags: fp-6a, fp-5a, fp-4a, fp-1a

Author: Npav Lab

Microsoft’s September 2025 Patch Tuesday addresses 81 security flaws, including two publicly disclosed zero-day vulnerabilities in SMB Server and Microsoft SQL Server. Learn about critical updates and other vendor patches.

SpamGPT: AI-Powered Phishing Toolkit Enabling Massive Email Attacks

Posted: September 09, 2025

Categories: Phishing, Email And Password, AI

Tags: fp-3d, fp-3c, fp-3b, fp-3a, fp-2d, fp-1b

Author: Npav Lab

SpamGPT is a dark web “spam-as-a-service” platform using AI to automate large-scale phishing campaigns. Learn how KaliGPT and SMTP cracking training empower cybercriminals.

Google Search Scam: Policeman Loses Over Rs 3.9 Lakh to Fake Customer Care Fraud

Posted: September 09, 2025

Categories: Google, Financial fraud, Fraud Protector, Mobile Frauds

Tags: fp-2e, fp-2d, fp-2c, fp-2b, fp-2a, fp-1a

Author: Npav Lab

Assistant Sub-Inspector Om Parkash lost Rs 3.9 lakh after calling fake customer care numbers found on Google. Learn how scammers exploit search results and how to protect yourself.

Hackers Exploit Amazon SES to Send Over 50,000 Malicious Emails Daily in Large-Scale Phishing Campaign

Posted: September 09, 2025

Categories: Phishing, Email And Password, Hacker, Amazon

Tags: fp-3b, fp-3a, fp-2d, fo-2b

Author: Npav Lab

Cybercriminals abused compromised AWS credentials to hijack Amazon SES, sending 50,000+ phishing emails daily by bypassing sandbox limits. Learn how to detect and prevent SES abuse.

Critical Progress OpenEdge AdminServer Vulnerability CVE-2025-7388 Allows Remote Code Execution

Posted: September 09, 2025

Categories: vulnerability

Tags: fp-6e, fp-6d, fp-6c, fp-6b

Author: Npav Lab

A severe remote code execution vulnerability in Progress OpenEdge AdminServer’s Java RMI interface (CVE-2025-7388) lets attackers execute commands with elevated privileges. Update to LTS versions 12.2.18 or 12.8.9 immediately.

Critical pgAdmin4 Vulnerability CVE-2025-9636 Allows Unauthorized Account Access

Posted: September 08, 2025

Categories: vulnerability

Tags: fp-3b, fp-3a, fp-1b

Author: Npav Lab

A high-severity COOP vulnerability in pgAdmin4 (up to version 9.7) enables attackers to bypass authentication and hijack accounts. Update to version 9.8 immediately to protect your PostgreSQL environment.