Npav Lab - Page 21

Apple Fixes Zero-Day Vulnerability CVE-2025-43300 in iOS, iPadOS, and macOS

Posted: August 25, 2025

Categories: vulnerability

Tags: fp-2e, fp-2c, fp-1b

Author: Npav Lab

Apple has released critical updates to address CVE-2025-43300, a zero-day vulnerability affecting iOS, iPadOS, and macOS. Learn about the impact, affected devices, and how to stay secure.

Fortinet VPNs Under Attack: Potential Zero-Day Threats and How to Stay Safe

Posted: August 21, 2025

Categories: Cyber Attack, vulnerability

Tags: fp-6c, fp-6b, fp-6a

Author: Npav Lab

Fortinet users are being warned of potential cyberattacks targeting their VPN tools. Learn about the latest threats, how to identify them, and steps to take to protect your network.

AI-Powered Trojan Horses: How LLMs Are Reviving Classic Cyber Threats

Posted: August 21, 2025

Categories: Cyber Attack, Trojan

Tags: fp-3b, fp-3a

Author: Npav Lab

Explore the resurgence of trojan horses powered by Large Language Models (LLMs). Learn how these threats disguise themselves as legitimate applications, embedding malicious capabilities that challenge traditional defenses.

PhantomCard Malware: New NFC-Based Threat Targeting Android Banking Users

Posted: August 21, 2025

Categories: Bank Phishing, Malware Alerts, Android Security

Tags: fp-2e, fp-2d, fp-2c, fp-2b, fp-1b, fp-1a

Author: Npav Lab

Discover PhantomCard, a sophisticated NFC-based Trojan targeting banking customers in Brazil. Learn how this malware exploits NFC relay attacks to steal sensitive card data and facilitate unauthorized transactions.

New Ghost-Tapping Attacks Threaten Apple Pay and Google Pay Users

Posted: August 21, 2025

Categories: Financial fraud, Fraud Protector, Mobile Frauds

Tags: fp-2e, fp-2c, fp-1b, fp-1a

Author: Npav Lab

Learn about the emerging ghost-tapping technique that exploits stolen payment card details linked to Apple Pay and Google Pay. Discover how this method facilitates retail fraud and the impact on users.

RingReaper Malware Targets Linux Servers, Evading EDR Solutions

Posted: August 20, 2025

Categories: Malware Alerts

Tags: fp-6e, fp-6c, fp-6b, fp-6a

Author: Npav Lab

Discover how RingReaper, a sophisticated malware strain, targets Linux environments and evades traditional endpoint detection and response systems using advanced techniques. Learn about its impact on security.

New GodRAT Malware Targets Financial Institutions via Screensaver and Program Files

Posted: August 20, 2025

Categories: Malware Alerts, Financial fraud

Tags: fp-3c, fp-3b, fp-3a, fp-1b

Author: Npav Lab

Discover how the new GodRAT malware, derived from the Gh0st RAT codebase, infiltrates financial institutions using malicious screensaver and program files. Learn about its evolution and impact on security.

Copilot Vulnerability Exposes Audit Logs, Allowing Unauthorized Access to Sensitive Files

Posted: August 20, 2025

Categories: Data Breach, vulnerability

Tags: fp-6d, fp-1b

Author: Npav Lab

A critical vulnerability in Microsoft’s Copilot for M365 has allowed unauthorized access to sensitive files without leaving a trace in audit logs. Learn about the implications for organizations and the lack of transparency from Microsoft.

Mobile Phishing Attacks Target Brokerage Customers in ‘Ramp and Dump’ Schemes

Posted: August 20, 2025

Categories: Phishing

Tags: fp-2e, fp-2d, fp-2c, fp-2b, fp-2a, fp-1a

Author: Npav Lab

Discover how cybercriminals are exploiting brokerage accounts in sophisticated ‘ramp and dump’ schemes using mobile phishing tactics. Learn about the risks and how to protect yourself.

New Android Phishing Attack Targets Indian Users with Free Electricity Subsidy Scheme

Posted: August 20, 2025

Categories: Phishing, Android Security

Tags: fp-2d, fp-2c, fp-2b, fp-2a, fp-1a

Author: Npav Lab

A new Android phishing campaign is deceiving Indian users by posing as the PM Surya Ghar: Muft Bijli Yojana. Learn how attackers exploit this scheme to install malware and steal sensitive banking information.