AI

Fake Claude Code Installer Spreads Fileless .NET Infostealer via SEO Poisoning

Posted: June 05, 2026

Categories: Data Breach, AI

Tags: data breach, cyber security

Author: Npav Lab

Hackers are using fake Claude Code installation pages to distribute a fileless .NET infostealer that steals credentials and bypasses traditional security defenses.

WhatsApp and Slack Notifications Could Hijack Google Gemini on Android

Posted: June 04, 2026

Categories: Browser Hijack, Android Security, WhatsApp, Fraud Protector, Mobile Frauds, AI

Tags: vulnerability, malicious, google, android, ai

Author: Npav Lab

Researchers discovered a Google Gemini vulnerability that allowed malicious WhatsApp, Slack, and SMS notifications to manipulate the AI assistant and trigger unauthorized actions on Android devices.

Instagram Meta AI Flaw Allowed Password Reset Abuse and Account Takeovers

Posted: June 02, 2026

Categories: Data Breach, Email And Password, Social Media, Facebook, Instagram, AI

Tags: vulnerability, password leak, instagram, facebook, data breach, cyber attack, ai

Author: Npav Lab

A vulnerability in Instagram's Meta AI-powered account recovery system allegedly allowed attackers to obtain password reset codes and hijack high-value accounts by bypassing identity verification checks.

CERT-In Orders 12-Hour Patching for Critical Internet-Facing Vulnerabilities Amid Rising AI Cyberattacks

Posted: May 28, 2026

Categories: Cyber Attack, vulnerability, AI

Tags: vulnerability, cyber attack, cert, ai

Author: Npav Lab

CERT-In has issued new guidelines requiring organizations to patch critical internet-facing vulnerabilities within 12 hours, warning that AI-powered cyberattacks are drastically reducing exploitation timeframes and increasing cyber risk.

Fake DeepSeek TUI GitHub Repositories Used to Spread Malware via AI Tool Spoofing

Posted: May 13, 2026

Categories: Malware Alerts, AI

Tags: malware, github, developers, deepseek, ai

Author: Npav Lab

Cybersecurity researchers have discovered fake GitHub repositories impersonating DeepSeek TUI to deliver malware. The campaign uses compressed archives and multi-stage payloads to bypass detection, disable Windows Defender, and establish persistent access on infected systems.

Fake Claude AI Installer Pages Spread Malware Through Google Ads

Posted: May 08, 2026

Categories: Google, Malware Alerts, AI

Tags: phishing, malware, google ads, google, claude ai

Author: Npav Lab

Hackers are using fake Claude AI installer pages and Google Ads to spread malware, steal credentials, and infect Windows and macOS systems.

What is Claude Mythos and Why It’s a Wake-Up Call for Businesses

Posted: May 06, 2026

Categories: Data Breach, Bug, AI

Tags: zero-day exploit, mythos, cyber security, claude ai, ai

Author: Npav Lab

Claude Mythos AI is redefining cyber threats by discovering zero-day vulnerabilities and generating exploits faster than ever. Learn how businesses can stay protected.

Critical Anthropic MCP Vulnerability Enables Remote Code Execution Attacks

Posted: April 21, 2026

Categories: vulnerability, AI

Tags: vulnerability, remote code execution, ai

Author: Npav Lab

A critical flaw in Anthropic MCP exposes millions to RCE attacks, risking full system takeover, data theft, and AI infrastructure compromise.

Hackers Exploit n8n AI Workflow to Deliver Malware via Trusted Webhooks

Posted: April 16, 2026

Categories: Malware Alerts, Hacker, AI

Tags: fp-4b, fp-4a, fp-3a, fp-2c, fp-2b, fp-2a, fp-1b, fp-1a, f-3b

Author: Npav Lab

Cybercriminals abuse n8n AI workflow automation to deliver malware through trusted webhooks, bypassing security filters and targeting enterprise users.