NPAV Logo

Shopping Cart My Cart 0
₹0.00
Currency
INR
Currency
INR

Npav Lab

  1. Fake Madgicx Plus and SocialMetrics Extensions Hijack Meta Business Accounts

    Fake Madgicx Plus and SocialMetrics Extensions Hijack Meta Business Accounts

    Posted: September 11, 2025
    Categories: Browser Hijack, Social Media, Facebook
    Tags: fp-3b, fp-3a, fp-2c, fp-2b, fp-1b, fp-1a
    Author: Npav Lab
    Views: 25
    Malicious browser extensions SocialMetrics Pro and Madgicx Plus steal Facebook session cookies and credentials to hijack Meta Business accounts. Learn how these fake tools target advertisers via malvertising and fake websites.
    Read more
  2. FastNetMon Mitigates Record 1.5 Billion Packets-Per-Second DDoS Attack on Major Scrubbing Vendor

    FastNetMon Mitigates Record 1.5 Billion Packets-Per-Second DDoS Attack on Major Scrubbing Vendor

    Posted: September 11, 2025
    Categories: DDoS
    Tags: fp-6c, fp-6b, fp-1b
    Author: Npav Lab
    Views: 16
    FastNetMon detected and helped stop a massive 1.5 billion packets-per-second UDP flood targeting a Western European DDoS mitigation provider. Learn about this record-breaking attack and defense strategies.
    Read more
  3. Cursor AI Code Editor RCE Vulnerability Enables Automatic Execution of Malicious Code

    Cursor AI Code Editor RCE Vulnerability Enables Automatic Execution of Malicious Code

    Posted: September 11, 2025
    Categories: vulnerability, AI
    Tags: fp-3b, fp-3a, fp-1a
    Author: Npav Lab
    Views: 28
    A remote code execution flaw in Cursor AI Code Editor allows malicious code to run automatically when opening a project. Learn how disabling Workspace Trust exposes developers and how to protect your environment.
    Read more
  4. Microsoft September 2025 Patch Tuesday Fixes 81 Vulnerabilities Including Two Zero-Days

    Microsoft September 2025 Patch Tuesday Fixes 81 Vulnerabilities Including Two Zero-Days

    Posted: September 11, 2025
    Categories: vulnerability, Microsoft
    Tags: fp-6a, fp-5a, fp-4a, fp-1a
    Author: Npav Lab
    Views: 29
    Microsoft’s September 2025 Patch Tuesday addresses 81 security flaws, including two publicly disclosed zero-day vulnerabilities in SMB Server and Microsoft SQL Server. Learn about critical updates and other vendor patches.
    Read more
  5. SpamGPT: AI-Powered Phishing Toolkit Enabling Massive Email Attacks

    SpamGPT: AI-Powered Phishing Toolkit Enabling Massive Email Attacks

    Posted: September 09, 2025
    Categories: Phishing, Email And Password, AI
    Tags: fp-3d, fp-3c, fp-3b, fp-3a, fp-2d, fp-1b
    Author: Npav Lab
    Views: 79
    SpamGPT is a dark web “spam-as-a-service” platform using AI to automate large-scale phishing campaigns. Learn how KaliGPT and SMTP cracking training empower cybercriminals.
    Read more
  6. Google Search Scam: Policeman Loses Over Rs 3.9 Lakh to Fake Customer Care Fraud

    Google Search Scam: Policeman Loses Over Rs 3.9 Lakh to Fake Customer Care Fraud

    Posted: September 09, 2025
    Categories: Google, Financial fraud, Fraud Protector, Mobile Frauds
    Tags: fp-2e, fp-2d, fp-2c, fp-2b, fp-2a, fp-1a
    Author: Npav Lab
    Views: 46
    Assistant Sub-Inspector Om Parkash lost Rs 3.9 lakh after calling fake customer care numbers found on Google. Learn how scammers exploit search results and how to protect yourself.
    Read more
  7. Hackers Exploit Amazon SES to Send Over 50,000 Malicious Emails Daily in Large-Scale Phishing Campaign

    Hackers Exploit Amazon SES to Send Over 50,000 Malicious Emails Daily in Large-Scale Phishing Campaign

    Posted: September 09, 2025
    Categories: Phishing, Email And Password, Hacker, Amazon
    Tags: fp-3b, fp-3a, fp-2d, fo-2b
    Author: Npav Lab
    Views: 30
    Cybercriminals abused compromised AWS credentials to hijack Amazon SES, sending 50,000+ phishing emails daily by bypassing sandbox limits. Learn how to detect and prevent SES abuse.
    Read more
  8. Critical Progress OpenEdge AdminServer Vulnerability CVE-2025-7388 Allows Remote Code Execution

    Critical Progress OpenEdge AdminServer Vulnerability CVE-2025-7388 Allows Remote Code Execution

    Posted: September 09, 2025
    Categories: vulnerability
    Tags: fp-6e, fp-6d, fp-6c, fp-6b
    Author: Npav Lab
    Views: 41
    A severe remote code execution vulnerability in Progress OpenEdge AdminServer’s Java RMI interface (CVE-2025-7388) lets attackers execute commands with elevated privileges. Update to LTS versions 12.2.18 or 12.8.9 immediately.
    Read more
  9. Critical pgAdmin4 Vulnerability CVE-2025-9636 Allows Unauthorized Account Access

    Critical pgAdmin4 Vulnerability CVE-2025-9636 Allows Unauthorized Account Access

    Posted: September 08, 2025
    Categories: vulnerability
    Tags: fp-3b, fp-3a, fp-1b
    Author: Npav Lab
    Views: 36
    A high-severity COOP vulnerability in pgAdmin4 (up to version 9.7) enables attackers to bypass authentication and hijack accounts. Update to version 9.8 immediately to protect your PostgreSQL environment.
    Read more
  10. Odyssey macOS Stealer Spread via Fake Microsoft Teams Site Targets Cryptocurrency Wallets

    Odyssey macOS Stealer Spread via Fake Microsoft Teams Site Targets Cryptocurrency Wallets

    Posted: September 08, 2025
    Categories: Microsoft, Financial fraud, Fraud Protector
    Tags: fp-6d, fp-6a, fp-4c, fp-4a
    Author: Npav Lab
    Views: 20
    Cybercriminals use a fake Microsoft Teams download site to distribute the Odyssey macOS stealer, stealing credentials, crypto wallets, and sensitive data. Learn how to protect your Mac.
    Read more
Page
Categories
Recent Posts
Scam alert infographic: Hotel booking with fake staff icon, arrows to QR code payments; protective shields for verification, with "Verify Directly" warning banner over a travel scene.
KTMS warns of hotel scams in Kerala—learn the tactics and tips to avoid losing money to impersonators.
November 17, 2025
Phishing alert infographic: Invoice email with VBS attachment, arrows to XWorm stealing data; protective shields for filtering and training, with "Verify Emails" warning banner over an inbox.
Fake Invoices Spread XWorm: Hackers Steal Login Data
November 17, 2025
Malware alert infographic: Photo frame with auto-download arrows to spyware; protective shields for updates and isolation, with "Secure Your IoT" warning banner over a smart home.
Android Photo Frames: Malware Infects Devices Automatically
November 14, 2025
Phishing alert infographic: Lost iPhone with fake recovery message, arrows to stolen Apple ID; protective shields for verification and passwords, with "Don't Click Links" warning banner over a smartphone.
Phishing Attack: Scammers Target Owners of Lost iPhones
November 14, 2025
Malware alert infographic: WhatsApp icon with hijack arrows to bank credentials; protective shields for MFA and antivirus, with "Secure Your Messages" warning banner over a smartphone.
Maverick Malware: Hijacks WhatsApp to Target Brazilian Banks
November 13, 2025
Back to Top