NPAV Logo

Shopping Cart My Cart 0
₹0.00
Currency
INR
Currency
INR

Npav Lab

  1. Lazarus Hackers Exploit Google Chrome Zero-Day with Fake DeFi Game to Steal Cryptocurrency Data

    Lazarus Hackers Exploit Google Chrome Zero-Day with Fake DeFi Game to Steal Cryptocurrency Data

    Posted: October 24, 2024
    Categories: Malware Alerts, Hacking
    Tags: cyber attacks, chrome exploits
    Author: Npav Lab
    Views: 100
    The Lazarus hacking group exploited a Google Chrome zero-day vulnerability (CVE-2024-4947) through a fake decentralized finance (DeFi) game, "DeTankZone," targeting individuals in the cryptocurrency sector. This attack demonstrates Lazarus' evolving tactics, using browser exploits and rebranded games to steal sensitive data and potentially cryptocurrency.
    Read more
  2. Gophish Framework Exploited in Phishing Campaigns to Deploy DCRat and PowerRAT

    Gophish Framework Exploited in Phishing Campaigns to Deploy DCRat and PowerRAT

    Posted: October 23, 2024
    Categories: Malware Alerts, Phishing
    Tags: malware attack, email security
    Author: Npav Lab
    Views: 113
    A new phishing campaign has been uncovered targeting Russian-speaking users, leveraging the Gophish framework to deliver two remote access trojans (RATs)—DarkCrystal RAT (DCRat) and a newly identified malware, PowerRAT. The campaign exploits phishing emails, malicious documents, and HTML pages to initiate infection chains, resulting in system compromise and data exfiltration.
    Read more
  3. Bumblebee Malware Returns After Law Enforcement Crackdown, Signaling Potential New Threat Wave

    Bumblebee Malware Returns After Law Enforcement Crackdown, Signaling Potential New Threat Wave

    Posted: October 22, 2024
    Categories: Malware Alerts, Phishing
    Tags: phishing attack, cyber threat
    Author: Npav Lab
    Views: 234
    The Bumblebee malware loader, believed to be a creation of TrickBot developers, has resurfaced after going silent following a law enforcement disruption in May 2024. New attacks tied to Bumblebee have been observed, signaling a possible resurgence of the malware. It continues to target victims through phishing and malvertising, delivering dangerous payloads like ransomware and information-stealing malware.
    Read more
  4. Hackers Exploit Roundcube Webmail XSS Vulnerability to Steal Government Login Credentials

    Hackers Exploit Roundcube Webmail XSS Vulnerability to Steal Government Login Credentials

    Posted: October 21, 2024
    Categories: Phishing, vulnerability
    Tags: webmail security, phishing attack
    Author: Npav Lab
    Views: 78
    A recently discovered phishing campaign is exploiting a stored cross-site scripting (XSS) vulnerability in the open-source Roundcube webmail software to steal login credentials. Threat actors are leveraging a now-patched flaw (CVE-2024-37383) via malicious emails, targeting government organizations in Commonwealth of Independent States (CIS) countries. The vulnerability, patched in May 2024, allowed attackers to execute JavaScript within victims' browsers, tricking them into revealing sensitive login information.
    Read more
  5. Fake Google Meet Errors Used in ClickFix Campaigns to Spread Infostealing Malware

    Fake Google Meet Errors Used in ClickFix Campaigns to Spread Infostealing Malware

    Posted: October 18, 2024
    Categories: Malware Alerts, Phishing
    Tags: phishing campaigns, infostealing malware
    Author: Npav Lab
    Views: 154
    A new ClickFix campaign is targeting users with fake Google Meet conference errors, luring them to download infostealing malware on both Windows and macOS systems. The campaign impersonates technical issues and prompts victims to run malicious PowerShell code, infecting devices with malware like Stealc, Rhadamanthys, and AMOS Stealer.
    Read more
  6. Hackers Exploit EDRSilencer Tool to Evade Detection and Hide Malicious Activity

    Hackers Exploit EDRSilencer Tool to Evade Detection and Hide Malicious Activity

    Posted: October 17, 2024
    Categories: Security, Malware Alerts
    Tags: threat actor, cyber security
    Author: Npav Lab
    Views: 77
    Cybercriminals are increasingly abusing the open-source EDRSilencer tool to tamper with Endpoint Detection and Response (EDR) solutions and conceal their malicious activities. This tool uses the Windows Filtering Platform (WFP) to block security software from communicating, making it harder for organizations to detect and remove malware.
    Read more
  7. Malicious Ads Exploited Internet Explorer Zero-Day to Spread RokRAT Malware in ScarCruft Attack

    Malicious Ads Exploited Internet Explorer Zero-Day to Spread RokRAT Malware in ScarCruft Attack

    Posted: October 17, 2024
    Categories: Malware Alerts, Cyber Attack
    Tags: rokrat malware, internet explorer
    Author: Npav Lab
    Views: 278
    In May 2024, North Korean hacking group ScarCruft (APT37) exploited an Internet Explorer zero-day flaw (CVE-2024-39178) to distribute RokRAT malware through malicious toast pop-up ads. This zero-click malware campaign, dubbed "Code on Toast," compromised an advertising server, targeting systems to exfiltrate sensitive data and perform espionage activities. Despite Internet Explorer’s retirement, its components still pose a significant risk as threat actors continue exploiting these vulnerabilities.
    Read more
  8. New TrickMo Variants: Android Banking Trojan Gains Ability to Capture PINs and Unlock Patterns

    New TrickMo Variants: Android Banking Trojan Gains Ability to Capture PINs and Unlock Patterns

    Posted: October 16, 2024
    Categories: Phishing, Banking Trojan
    Tags: data theft, android malware
    Author: Npav Lab
    Views: 268
    New variants of the TrickMo banking trojan can now capture Android unlock patterns and PINs, allowing attackers to access locked devices. By using a deceptive user interface that mimics the actual unlock screen, TrickMo tricks victims into revealing sensitive information. This malware can also steal one-time passwords (OTPs) and execute unauthorized transactions across various applications, reflecting a 29% increase in mobile attacks, particularly targeting users in India.
    Read more
  9. New Malware Campaign Unleashes DarkVision RAT via PureCrypter Loader

    New Malware Campaign Unleashes DarkVision RAT via PureCrypter Loader

    Posted: October 16, 2024
    Categories: Malware Alerts, RAT
    Tags: trojan, cyber threat
    Author: Npav Lab
    Views: 277
    Cybersecurity researchers have uncovered a new malware campaign leveraging the PureCrypter loader to deliver DarkVision RAT, a commodity remote access trojan with a broad range of malicious capabilities. First identified by Zscaler ThreatLabz in July 2024, the campaign employs a multi-stage attack process, exploiting persistence techniques and targeting Windows systems. DarkVision RAT’s versatility, combined with its low cost, has made it a popular tool for cybercriminals.
    Read more
  10. Critical Veeam Vulnerability Exploited to Spread Akira and Fog Ransomware

    Critical Veeam Vulnerability Exploited to Spread Akira and Fog Ransomware

    Posted: October 15, 2024
    Categories: Ransomware, vulnerability
    Tags: vpn exploits, phishing attack
    Author: Npav Lab
    Views: 108
    Threat actors are exploiting a now-patched vulnerability in Veeam Backup & Replication (CVE-2024-40711) to deploy Akira and Fog ransomware. Using compromised VPN credentials, attackers create local accounts and spread ransomware, targeting enterprise backup systems. The flaw, rated 9.8 on the CVSS scale, enables remote code execution and was patched in September 2024.
    Read more
Page
Categories
Recent Posts
Critical TeamViewer Vulnerability Allows File Deletion with SYSTEM Privileges
Critical TeamViewer Vulnerability Allows File Deletion with SYSTEM Privileges
June 25, 2025
Hackers Target Over 70 Microsoft Exchange Servers to Steal Credentials with Keyloggers
Hackers Target Over 70 Microsoft Exchange Servers to Steal Credentials with Keyloggers
June 25, 2025
phishing attack over 2,000 devices by Social Security Administration communications.
Over 2,000 Devices Compromised in Sophisticated Phishing Attack Using Fake Social Security Statements
June 25, 2025
netflix microsoft and bank of america website have phishing attack and shows fake mobile numbers on websites
Netflix, Microsoft, and Bank of America Targeted by Scam: Fake Phone Numbers Injected into Websites
June 25, 2025
wordpress and woocommerce data breached
Advanced Malware Campaign Targets WordPress and WooCommerce Sites with Obfuscated Skimmers
June 25, 2025
Archive
June 2025
May 2025
April 2025
March 2025
February 2025
January 2025
December 2024
November 2024
October 2024
September 2024
August 2024
July 2024
June 2024
May 2024
April 2024
March 2024
February 2024
January 2024
December 2023
November 2023
October 2023
September 2023
August 2023
July 2023
June 2023
May 2023
April 2023
March 2023
February 2023
January 2023
December 2022
November 2022
October 2022
September 2022
August 2022
July 2022
June 2022
May 2022
April 2022
February 2022
January 2022
December 2021
November 2021
October 2021
September 2021
August 2021
July 2021
June 2021
May 2021
April 2021
March 2021
February 2021
January 2021
December 2020
November 2020
October 2020
September 2020
August 2020
July 2020
June 2020
May 2020
April 2020
March 2020
February 2020
January 2020
December 2019
November 2019
October 2019
September 2019
August 2019
July 2019
June 2019
May 2019
April 2019
March 2019
February 2019
January 2019
December 2018
August 2018
July 2018
June 2018
May 2018
April 2018
March 2018
January 2018
December 2017
November 2017
October 2017
August 2017
July 2017
May 2017
January 2017
December 2016
November 2016
October 2016
September 2016
August 2016
July 2016
June 2016
May 2016
April 2016
March 2016
February 2016
January 2016
December 2015
November 2015
October 2015
September 2015
August 2015
July 2015
June 2015
May 2015
April 2015
March 2015
February 2015
January 2015
December 2014
November 2014
October 2014
September 2014
August 2014
July 2014
June 2014
May 2014
April 2014
March 2014
January 2014
Tags
cyber attack phishing cybersecurity phishing attacks cybercrime data breach cyber threats malware phishing attack ransomware data theft cybersecurity threats credential theft android malware financial fraud ransomeware cyber security financial security data protection social engineering phishingattack cyber fraud cyberthreats cyber crime identity theft ddos attack data stealing network security phishing scam cert-in microsoft cyberattack india twitter ddos malware attack financial crime critical vulnerability net protector total security digital safety data security cybersecurity awareness online fraud cyber threat phishing email cybercriminals security vulnerabilities trojan cyber attacks lockbit
RSS Feed RSS Feed
Back to Top