NPAV Logo

Shopping Cart My Cart 0
₹0.00
Currency
INR
Currency
INR

Npav Lab

  1. Sangoma FreePBX Authentication Bypass Vulnerability Risks Remote Code Execution

    Sangoma FreePBX Authentication Bypass Vulnerability Risks Remote Code Execution

    Posted: September 01, 2025
    Categories: vulnerability
    Tags: fp-1b
    Author: Npav Lab
    Views: 74
    Learn about the critical Sangoma FreePBX authentication bypass vulnerability that risks remote code execution and how to protect your system.
    Read more
  2. Sindoor Dropper Malware Targets Linux Systems Using Weaponized .desktop Files

    Sindoor Dropper Malware Targets Linux Systems Using Weaponized .desktop Files

    Posted: September 01, 2025
    Categories: Malware Alerts
    Tags: fp-6e, fp-4b, fp-3b, fp-3a
    Author: Npav Lab
    Views: 95
    Discover how Sindoor Dropper malware uses weaponized .desktop files to infect Linux systems via spear-phishing and deploys MeshAgent RAT.
    Read more
  3. AI-Generated Ransomware Evades Antivirus Detection: New Cybersecurity Threat in 2025

    AI-Generated Ransomware Evades Antivirus Detection: New Cybersecurity Threat in 2025

    Posted: September 01, 2025
    Categories: Ransomware, AI
    Tags: fp-3b, fp-3a, fp-1b
    Author: Npav Lab
    Views: 68
    Discover how AI-generated ransomware bypasses antivirus software, posing new cybersecurity risks in 2025 and challenging traditional defenses.
    Read more
  4. TamperedChef Malware Disguised as AppSuite PDF Editor Steals Sensitive Data

    TamperedChef Malware Disguised as AppSuite PDF Editor Steals Sensitive Data

    Posted: August 28, 2025
    Categories: Malware Alerts, Data Breach, AI
    Tags: fp-3b, fp-3a, fp-1a
    Author: Npav Lab
    Views: 201
    Discover how the TamperedChef malware uses a fake PDF editor to steal login credentials and sensitive data in a widespread 2025 cyberattack.
    Read more
  5. PromptLock: The First AI-Powered Ransomware Discovered Using OpenAI's gpt-oss:20b Model

    PromptLock: The First AI-Powered Ransomware Discovered Using OpenAI's gpt-oss:20b Model

    Posted: August 28, 2025
    Categories: Ransomware, AI
    Tags: fp-4c, fp-4b, fp-4a, fp-3b, fp-3a, fp-1b
    Author: Npav Lab
    Views: 133
    Discover PromptLock, the first AI-powered ransomware using OpenAI's gpt-oss:20b model, enabling sophisticated attacks across multiple platforms.
    Read more
  6. Underground Ransomware Gang: Evolving Tactics Threaten Global Organizations in 2024

    Underground Ransomware Gang: Evolving Tactics Threaten Global Organizations in 2024

    Posted: August 28, 2025
    Categories: Ransomware
    Tags: fp-3b, fp-3a, fp-1b, fp-1a
    Author: Npav Lab
    Views: 75
    Explore how the Underground ransomware gang is enhancing tactics against global organizations, using advanced encryption and targeted attacks.
    Read more
  7. Salesloft OAuth Breach: How Hackers Exposed Salesforce Customer Data via Drift AI Chat Agent

    Salesloft OAuth Breach: How Hackers Exposed Salesforce Customer Data via Drift AI Chat Agent

    Posted: August 28, 2025
    Categories: Cyber Attack, Data Breach, AI
    Tags: fp-3b, fp-2a, fp-1b
    Author: Npav Lab
    Views: 79
    Discover how the Salesloft OAuth breach compromised Salesforce customer data through the Drift AI chat agent, affecting over 700 organizations.
    Read more
  8. Fake Loan Apps Resurface in India: Global Network Under Investigation

    Fake Loan Apps Resurface in India: Global Network Under Investigation

    Posted: August 27, 2025
    Categories: Android Security, Financial fraud, Fraud Protector, Mobile Frauds
    Tags: fp-2e, fp-2d, fp-2c, fp-2b, fp-2a, fp-1a
    Author: Npav Lab
    Views: 154
    Discover how fake loan apps in India are trapping users in harassment and blackmail. Learn about the global network behind these predatory practices and the ongoing regulatory challenges.
    Read more
  9. Malicious Go Module Poses as SSH Brute-Force Tool: Credential Theft via Telegram Bot

    Malicious Go Module Poses as SSH Brute-Force Tool: Credential Theft via Telegram Bot

    Posted: August 27, 2025
    Categories: Malware Alerts, Telegram
    Tags: fp-3b, fp-2a, fp-1b
    Author: Npav Lab
    Views: 128
    Discover how a malicious Go module masquerading as an SSH brute-force tool exfiltrates credentials to a Telegram bot. Learn about its key features and the threat it poses.
    Read more
  10. New Hook Android Banking Malware: Advanced Features and Threat Insights

    New Hook Android Banking Malware: Advanced Features and Threat Insights

    Posted: August 27, 2025
    Categories: Malware Alerts, Android Security
    Tags: fp-3b, fp-3a, fp-2c
    Author: Npav Lab
    Views: 100
    Zimperium’s zLabs has uncovered a new variant of the Hook Android banking trojan, featuring ransomware-style overlays and advanced credential theft tactics. Learn about its key features and technical insights.
    Read more
Page
Categories
Recent Posts
Cybercriminals selling verified bank and cryptocurrency mule accounts through Telegram channels for money laundering operations
Cybercriminals Sell Verified Bank and Crypto Mule Accounts Through Telegram Channels
May 28, 2026
CERT-In advisory requiring 12-hour patching of critical vulnerabilities due to increasing AI-powered cyberattacks
CERT-In Orders 12-Hour Patching for Critical Internet-Facing Vulnerabilities Amid Rising AI Cyberattacks
May 28, 2026
WhatsApp chat histories stored unencrypted on iOS and macOS devices exposing local message data security risks
WhatsApp Chat Histories Found Stored Unencrypted on macOS and iOS Devices
May 25, 2026
Megalodon GitHub supply chain attack compromising thousands of repositories through malicious CI/CD workflows and credential theft
Megalodon GitHub Supply Chain Attack Compromised 5,500+ Repositories in Hours
May 22, 2026
Critical Linux kernel vulnerability allowing attackers to steal SSH private keys and gain root-level access on Linux systems
Critical Linux Kernel Vulnerability (CVE-2026-46333) Exposes SSH Private Keys and Enables Root Access
May 21, 2026
Back to Top