Npav Lab - Page 24

New Ghost-Tapping Attacks Threaten Apple Pay and Google Pay Users

Posted: August 21, 2025

Categories: Financial fraud, Fraud Protector, Mobile Frauds

Tags: fp-2e, fp-2c, fp-1b, fp-1a

Author: Npav Lab

Learn about the emerging ghost-tapping technique that exploits stolen payment card details linked to Apple Pay and Google Pay. Discover how this method facilitates retail fraud and the impact on users.

RingReaper Malware Targets Linux Servers, Evading EDR Solutions

Posted: August 20, 2025

Categories: Malware Alerts

Tags: fp-6e, fp-6c, fp-6b, fp-6a

Author: Npav Lab

Discover how RingReaper, a sophisticated malware strain, targets Linux environments and evades traditional endpoint detection and response systems using advanced techniques. Learn about its impact on security.

New GodRAT Malware Targets Financial Institutions via Screensaver and Program Files

Posted: August 20, 2025

Categories: Malware Alerts, Financial fraud

Tags: fp-3c, fp-3b, fp-3a, fp-1b

Author: Npav Lab

Discover how the new GodRAT malware, derived from the Gh0st RAT codebase, infiltrates financial institutions using malicious screensaver and program files. Learn about its evolution and impact on security.

Copilot Vulnerability Exposes Audit Logs, Allowing Unauthorized Access to Sensitive Files

Posted: August 20, 2025

Categories: Data Breach, vulnerability

Tags: fp-6d, fp-1b

Author: Npav Lab

A critical vulnerability in Microsoft’s Copilot for M365 has allowed unauthorized access to sensitive files without leaving a trace in audit logs. Learn about the implications for organizations and the lack of transparency from Microsoft.

Mobile Phishing Attacks Target Brokerage Customers in ‘Ramp and Dump’ Schemes

Posted: August 20, 2025

Categories: Phishing

Tags: fp-2e, fp-2d, fp-2c, fp-2b, fp-2a, fp-1a

Author: Npav Lab

Discover how cybercriminals are exploiting brokerage accounts in sophisticated ‘ramp and dump’ schemes using mobile phishing tactics. Learn about the risks and how to protect yourself.

New Android Phishing Attack Targets Indian Users with Free Electricity Subsidy Scheme

Posted: August 20, 2025

Categories: Phishing, Android Security

Comments: 1

Tags: fp-2d, fp-2c, fp-2b, fp-2a, fp-1a

Author: Npav Lab

A new Android phishing campaign is deceiving Indian users by posing as the PM Surya Ghar: Muft Bijli Yojana. Learn how attackers exploit this scheme to install malware and steal sensitive banking information.

Lockbit Linux ESXi Ransomware: Evasion Techniques and File Encryption Process

Posted: August 19, 2025

Categories: Ransomware

Tags: fp-6e, fp-6d, fp-6c, fp-6b, fp-6a, fp-4a

Author: Npav Lab

Discover the advanced evasion techniques and encryption methods used by the Lockbit ransomware variant targeting Linux-based ESXi servers. Learn how it operates and the implications for cybersecurity.

Critical Cisco Secure Firewall Management Center Vulnerability (CVE-2025-20265) Allows Remote Code Execution

Posted: August 19, 2025

Categories: vulnerability, firewall

Tags: fp-6d, fp-6c, fp-6b, fp-6a

Author: Npav Lab

Cisco has addressed a critical vulnerability (CVE-2025-20265) in its Secure Firewall Management Center Software, allowing unauthenticated remote attackers to execute arbitrary shell commands. Learn more about the vulnerability and affected versions.

Allianz Life Data Breach: 1.1 Million Customers Affected by Cybersecurity Incident

Posted: August 19, 2025

Categories: Data Breach

Tags: fp-3b, fp-3a, fp-1b, fp-1a

Author: Npav Lab

Allianz Life confirms a major data breach affecting 1.1 million customers. Learn about the stolen information, the hacking group behind the attack, and the risks of identity theft.

Beware of Fake ChatGPT App Spreading PipeMagic Malware: Microsoft Warning

Posted: August 19, 2025

Categories: Malware Alerts, Microsoft

Tags: fp-3b, fp-3a, fp-1a

Author: Npav Lab

Microsoft warns of a counterfeit ChatGPT Desktop app delivering PipeMagic malware, a modular backdoor linked to ransomware. Learn how to protect yourself from this cyber threat.