NPAV Logo

Shopping Cart My Cart 0
₹0.00
Currency
INR
Currency
INR

Cyber Attack

  1. Megalodon GitHub Supply Chain Attack Compromised 5,500+ Repositories in Hours

    Megalodon GitHub Supply Chain Attack Compromised 5,500+ Repositories in Hours

    Posted: May 22, 2026
    Categories: Cyber Attack, Data Breach
    Tags: malicious, github, data breach, cyber attack, credential theft
    Author: Npav Lab
    Views: 76
    The Megalodon supply chain attack compromised over 5,500 GitHub repositories within six hours by injecting malicious GitHub Actions workflows designed to steal cloud credentials, API keys, SSH keys, and CI/CD secrets.
    Read more
  2. Microsoft Teams Android Vulnerability Enables Device Spoofing Attacks

    Microsoft Teams Android Vulnerability Enables Device Spoofing Attacks

    Posted: May 14, 2026
    Categories: Cyber Attack, Android Security, vulnerability, Microsoft
    Tags: spoofing, phishing, mobile security threats, cyber attack, android
    Author: Npav Lab
    Views: 28
    Microsoft warns of a new Microsoft Teams Android vulnerability that could allow spoofing attacks on local devices. Update immediately to stay protected.
    Read more
  3. NVIDIA GeForce NOW Data Breach Exposes User Information

    NVIDIA GeForce NOW Data Breach Exposes User Information

    Posted: May 11, 2026
    Categories: Cyber Attack, Data Breach
    Tags: data stealing, data breach, cybersecurity, cyberattack
    Author: Npav Lab
    Views: 91
    A data breach involving NVIDIA GeForce NOW provider GFN.AM exposed user personal information, raising concerns over phishing and identity fraud attacks.
    Read more
  4. DAEMON Tools Supply Chain Attack Infects Official Installers With Malware

    DAEMON Tools Supply Chain Attack Infects Official Installers With Malware

    Posted: May 07, 2026
    Categories: Malware Alerts, Cyber Attack, Microsoft
    Tags: windows, microsoft, malware, cyber attack
    Author: Npav Lab
    Views: 80
    Hackers compromised official DAEMON Tools installers with malware in a major supply chain attack affecting users worldwide. Learn how to stay protected.
    Read more
  5. AI Router Vulnerabilities Enable Code Injection and Data Theft Attacks

    AI Router Vulnerabilities Enable Code Injection and Data Theft Attacks

    Posted: April 14, 2026
    Categories: Cyber Attack, Data Breach, vulnerability, AI
    Comments: 1
    Tags: fp-4b, fp-4a, fp-3b, fp-3a, fp-2b, fp-2a, fp-1b, fp-1a
    Author: Npav Lab
    Views: 80
    AI router flaws allow attackers to inject malicious code, steal credentials, and hijack AI workflows. Learn risks and how to secure AI systems.
    Read more
  6. React Server Components Vulnerability CVE-2026-23869 Enables DoS Attacks

    React Server Components Vulnerability CVE-2026-23869 Enables DoS Attacks

    Posted: April 10, 2026
    Categories: Cyber Attack, vulnerability, DDoS
    Tags: fp-4b, fp-4a, fp-3b, fp-3a, fp-2c, fp-2b, fp-2a, fp-1b, fp-1a
    Author: Npav Lab
    Views: 39
    A critical React Server Components flaw (CVE-2026-23869) allows attackers to trigger DoS attacks by exhausting server resources with crafted requests.
    Read more
  7. GPUBreach Attack Enables Full CPU Privilege Escalation via GPU Memory Exploit

    GPUBreach Attack Enables Full CPU Privilege Escalation via GPU Memory Exploit

    Posted: April 07, 2026
    Categories: Cyber Attack
    Tags: fp-5a, fp-4b, fp-4a, fp-3b, fp-3a, fp-1b, fp-1a
    Author: Npav Lab
    Views: 87
    New GPUBreach attack uses RowHammer on GPU memory to gain full CPU access, bypassing protections and posing risks to AI and cloud systems.
    Read more
  8. ₹300 Crore Cyber Fraud Syndicate Busted in Delhi, Mastermind Arrested

    ₹300 Crore Cyber Fraud Syndicate Busted in Delhi, Mastermind Arrested

    Posted: April 06, 2026
    Categories: Cyber Attack, Financial fraud, Fraud Protector, Mobile Frauds
    Tags: fp-2c, fp-2b, fp-2a, fp-1b, fp-1a
    Author: Npav Lab
    Views: 143
    Delhi Police busts ₹300 crore cyber fraud syndicate linked to fake investment apps, arrests mastermind and uncovers global scam network.
    Read more
  9. Phishers Abuse Safe Links With Multi-Layer URL Rewriting to Evade Detection

    Phishers Abuse Safe Links With Multi-Layer URL Rewriting to Evade Detection

    Posted: March 17, 2026
    Categories: Cyber Attack, Phishing
    Tags: fp-4b, fp-4a, fp-3a, fp-1b, fp-1a
    Author: Npav Lab
    Views: 128
    Cyber attackers are abusing safe link URL rewriting and multi-layer redirects to bypass email security filters and steal Microsoft 365 credentials through phishing campaigns.
    Read more
  10. Leaked Coruna iPhone Exploit Toolkit Used by Russian Spies and Cybercriminals

    Leaked Coruna iPhone Exploit Toolkit Used by Russian Spies and Cybercriminals

    Posted: March 10, 2026
    Categories: Cyber Attack, Mobile Frauds
    Tags: fp-2b, fp-2a, fp-1b, fp-1a
    Author: Npav Lab
    Views: 46
    A powerful iPhone exploit toolkit called Coruna, originally built by a U.S. defense contractor, has leaked and is now used by Russian spies and cybercriminals to target iOS devices.
    Read more
Page
Categories
Recent Posts
WhatsApp chat histories stored unencrypted on iOS and macOS devices exposing local message data security risks
WhatsApp Chat Histories Found Stored Unencrypted on macOS and iOS Devices
May 25, 2026
Megalodon GitHub supply chain attack compromising thousands of repositories through malicious CI/CD workflows and credential theft
Megalodon GitHub Supply Chain Attack Compromised 5,500+ Repositories in Hours
May 22, 2026
Critical Linux kernel vulnerability allowing attackers to steal SSH private keys and gain root-level access on Linux systems
Critical Linux Kernel Vulnerability (CVE-2026-46333) Exposes SSH Private Keys and Enables Root Access
May 21, 2026
Mini Shai-Hulud malware infecting AntV npm packages via compromised maintainer accounts, stealing credentials and exploiting CI/CD pipelines
Mini Shai-Hulud Malware Infects AntV npm Packages via Compromised Maintainer Accounts
May 19, 2026
Critical MongoDB server vulnerability allowing arbitrary code execution and full system compromise
Critical MongoDB Vulnerability (CVE-2026-8053) Allows Remote Code Execution
May 19, 2026
Back to Top