Npav Lab - Page 16

Mathura Goseva Trust Scam: ₹21 Crore Online Fraud Exploiting Religious Faith

Posted: September 16, 2025

Categories: Financial fraud, Fraud Protector, Mobile Frauds

Tags: fp-2e, fp-2d, fp-2c, fp-2b, fp-2a, fp-1a

Author: Npav Lab

Discover how cybercriminals in Mathura orchestrated a ₹21 crore online fraud through a fake charity, the Goseva Trust, exploiting donors' faith in cow protection. Learn about arrests, money trails, and expert insights on emotional manipulation in scams.

Ivanti September 2025 Security Updates Fix 13 Critical Vulnerabilities

Posted: September 12, 2025

Categories: Updates, vulnerability

Tags: fp-5a, fp-1b

Author: Npav Lab

Ivanti’s September 2025 security bulletin addresses 13 vulnerabilities in Endpoint Manager, Connect Secure, Policy Secure, ZTA Gateways, and Neurons for Secure Access. No known exploitation reported.

Critical Vulnerability in Dassault Systèmes DELMIA Apriso Risks Remote Code Execution

Posted: September 12, 2025

Categories: vulnerability

Tags: fp-5b, fp-5a, fp-1b

Author: Npav Lab

A deserialization of untrusted data vulnerability in Dassault Systèmes DELMIA Apriso could allow remote code execution. Learn recommended actions to protect your systems.

Retired Railway Engineer Loses ₹18.45 Lakh in Pension Scam via Phone Hacking

Posted: September 12, 2025

Categories: Hacking, Financial fraud, Fraud Protector, Mobile Frauds

Tags: fp-2e, fp-2d, fp-2c, fp-2b, fp-1a

Author: Npav Lab

A retired railway engineer was defrauded of ₹18.45 lakh after cybercriminals hacked his phone through a fake pension correction call. Authorities are investigating the growing threat of cyber scams targeting senior citizens.

CERT-In Mandates Annual Cybersecurity Audits for India’s MSMEs

Posted: September 12, 2025

Categories: Cyber Attack

Tags: fp7a, fp-1a

Author: Npav Lab

India’s MSMEs must comply with new CERT-In rules requiring yearly cybersecurity audits, incident reporting, and employee training to strengthen digital defenses and protect the economy.

Fake Madgicx Plus and SocialMetrics Extensions Hijack Meta Business Accounts

Posted: September 11, 2025

Categories: Browser Hijack, Social Media, Facebook

Tags: fp-3b, fp-3a, fp-2c, fp-2b, fp-1b, fp-1a

Author: Npav Lab

Malicious browser extensions SocialMetrics Pro and Madgicx Plus steal Facebook session cookies and credentials to hijack Meta Business accounts. Learn how these fake tools target advertisers via malvertising and fake websites.

FastNetMon Mitigates Record 1.5 Billion Packets-Per-Second DDoS Attack on Major Scrubbing Vendor

Posted: September 11, 2025

Categories: DDoS

Tags: fp-6c, fp-6b, fp-1b

Author: Npav Lab

FastNetMon detected and helped stop a massive 1.5 billion packets-per-second UDP flood targeting a Western European DDoS mitigation provider. Learn about this record-breaking attack and defense strategies.

Cursor AI Code Editor RCE Vulnerability Enables Automatic Execution of Malicious Code

Posted: September 11, 2025

Categories: vulnerability, AI

Tags: fp-3b, fp-3a, fp-1a

Author: Npav Lab

A remote code execution flaw in Cursor AI Code Editor allows malicious code to run automatically when opening a project. Learn how disabling Workspace Trust exposes developers and how to protect your environment.

Microsoft September 2025 Patch Tuesday Fixes 81 Vulnerabilities Including Two Zero-Days

Posted: September 11, 2025

Categories: vulnerability, Microsoft

Tags: fp-6a, fp-5a, fp-4a, fp-1a

Author: Npav Lab

Microsoft’s September 2025 Patch Tuesday addresses 81 security flaws, including two publicly disclosed zero-day vulnerabilities in SMB Server and Microsoft SQL Server. Learn about critical updates and other vendor patches.

SpamGPT: AI-Powered Phishing Toolkit Enabling Massive Email Attacks

Posted: September 09, 2025

Categories: Phishing, Email And Password, AI

Tags: fp-3d, fp-3c, fp-3b, fp-3a, fp-2d, fp-1b

Author: Npav Lab

SpamGPT is a dark web “spam-as-a-service” platform using AI to automate large-scale phishing campaigns. Learn how KaliGPT and SMTP cracking training empower cybercriminals.