Npav Lab - Page 35

Cisco Identity Services Engine Injection Vulnerability: Risks and Mitigations

Posted: July 29, 2025

Categories: Data Breach, vulnerability

Tags: fp-5b, fp-1b, fp-1a

Author: Npav Lab

Learn about the injection vulnerability in Cisco Identity Services Engine (ISE) that could allow remote code execution. Discover recommended actions to mitigate risks and protect your network.

Weak Password Leads to Collapse of 158-Year-Old KNP Logistics

Posted: July 28, 2025

Categories: Data Breach, Email And Password

Tags: fp-3a, fp-1a

Author: Npav Lab

A single compromised password caused the downfall of KNP Logistics, a 158-year-old company, leaving 730 employees jobless. Learn about the Akira ransomware attack and its implications for UK businesses.

Nearly 1 Million Users Affected by Amazon’s Q Developer Extension Breach

Posted: July 28, 2025

Categories: Data Breach, Amazon

Tags: fp-1b, fp-1a

Author: Npav Lab

A security breach in Amazon's Q Developer Extension for Visual Studio Code affected nearly one million users. Learn how a hacker injected malicious code and what steps Amazon took to resolve the issue.

New Gunra Ransomware Targets Windows Systems, Encrypts Files, and Deletes Shadow Copies

Posted: July 28, 2025

Categories: Ransomware, Windows

Tags: fp-6b, fp-6a, fp-3d, fp-3c, fp-3b, fp-3a, fp-1a

Author: Npav Lab

Discover the new Gunra ransomware targeting Windows systems, encrypting files, and deleting shadow copies. Learn about its origins, tactics, and how organizations can defend against this emerging threat.

Pakistani Cyber Attack Targets NIT Jamshedpur, Displays Anti-India Sentiments

Posted: July 28, 2025

Categories: Cyber Attack, Data Breach

Tags: fp-1b, fp-1a

Author: Npav Lab

A cyber attack by Pakistani hackers on NIT Jamshedpur's official website displayed anti-India sentiments. Learn about the incident, its implications, and the ongoing investigation into the breach.

New Malware Campaign Exploits YouTube and Discord to Steal Credentials

Posted: July 25, 2025

Categories: Malware Alerts, Data Breach, YouTube

Tags: fp-3b, fp-3a, fp-1a

Author: Npav Lab

A new malware campaign targets gamers by promoting fake indie games through YouTube and Discord, installing credential-stealing malware. Learn how this sophisticated attack operates and the variants involved.

Navi Mumbai Woman Loses ₹2.29 Crore in Online Trading Scam

Posted: July 25, 2025

Categories: Financial fraud, Fraud Protector, Mobile Frauds

Tags: fp-2c, fp-2b, fp-2a

Author: Npav Lab

A 43-year-old entrepreneur from Navi Mumbai lost ₹2.29 crore in an online trading scam involving fake financial advisors and a fraudulent trading app. Learn how the scam unfolded and the ongoing investigation.

Cybercriminals Use Weaponized LNK Files to Steal User Data via Fake Credit Card Security Emails

Posted: July 25, 2025

Categories: Cyber Attack, Data Breach, Email And Password, Credit card scam

Tags: fp-3b, fo-3c

Author: Npav Lab

A new malware campaign exploits users' trust in financial institutions by using weaponized LNK files disguised as credit card security emails. Learn how this sophisticated attack operates.

Banking Trojan Coyote Exploits Windows UI Automation to Target Users

Posted: July 25, 2025

Categories: Windows, Banking Trojan

Tags: fp-4a, fp-3b, fp-3a, fp-1a

Author: Npav Lab

The Coyote banking Trojan, active since February 2024, is the first malware to exploit the Windows UI Automation framework, targeting banks and crypto exchanges in Brazil. Learn how it operates and the risks involved.

Hackers Embed Stealth Backdoor in WordPress Mu-Plugins for Persistent Admin Access

Posted: July 24, 2025

Categories: Data Breach, Hacker

Tags: fp-1b, fp-1a

Author: Npav Lab

Cybersecurity researchers have uncovered a stealth backdoor in WordPress mu-plugins, allowing hackers to maintain persistent admin access. Learn how this malware operates and how to protect your site.