Npav Lab

A critical vulnerability in Microsoft’s Copilot for M365 has allowed unauthorized access to sensitive files without leaving a trace in audit logs. Learn about the implications for organizations and the lack of transparency from Microsoft.

Discover how cybercriminals are exploiting brokerage accounts in sophisticated ‘ramp and dump’ schemes using mobile phishing tactics. Learn about the risks and how to protect yourself.

A new Android phishing campaign is deceiving Indian users by posing as the PM Surya Ghar: Muft Bijli Yojana. Learn how attackers exploit this scheme to install malware and steal sensitive banking information.

Discover the advanced evasion techniques and encryption methods used by the Lockbit ransomware variant targeting Linux-based ESXi servers. Learn how it operates and the implications for cybersecurity.

Cisco has addressed a critical vulnerability (CVE-2025-20265) in its Secure Firewall Management Center Software, allowing unauthenticated remote attackers to execute arbitrary shell commands. Learn more about the vulnerability and affected versions.

Allianz Life confirms a major data breach affecting 1.1 million customers. Learn about the stolen information, the hacking group behind the attack, and the risks of identity theft.

Microsoft warns of a counterfeit ChatGPT Desktop app delivering PipeMagic malware, a modular backdoor linked to ransomware. Learn how to protect yourself from this cyber threat.

Learn how a Patna man was arrested for his role in a ₹1-crore cyber fraud scheme involving fake car dealership websites. Discover the details of the scam and ongoing investigations.

Learn about India's Digital Personal Data Protection (DPDP) Act, 2023. Understand compliance requirements, key roles, individual rights, and penalties for non-compliance.

Learn about the critical WinRAR vulnerability (CVE-2025-8088) that allows attackers to hijack extraction processes. Discover the importance of applying the security patch before September 2, 2025.