Hacker - Page 5

Hackers Bypass EDR with In-Memory PE Loader: Fileless Execution in Trusted Processes

Posted: September 25, 2025

Categories: Hacker, AI

Tags: fp-6d, fp-6a, fp-3b, fp-3a, fp-1b, fp-1a

Author: Npav Lab

Threat actors use in-memory PE loaders to download and run malicious executables (e.g., RATs) via Windows APIs like VirtualAlloc and LoadLibraryA, evading file-based EDR like Microsoft Defender/Sophos. Learn the technique's steps, red team success, and need for memory/behavioral defenses.

CISA Advisory: Hackers Breach U.S. Federal Agency Network via GeoServer RCE (CVE-2024-36401) in 3-Week Undetected Attack

Posted: September 24, 2025

Categories: Data Breach, Hacker

Tags: fp6a, fp-6b, fp-5b, fp-5a, fp-1b

Author: Npav Lab

CISA details threat actors exploiting CVE-2024-36401 in GeoServer for initial access to a U.S. federal network on July 11, 2024, using webshells, dirtycow escalation, and lateral movement—undetected until July 31. Key lessons: Immediate KEV patching, enhanced IR plans, and continuous EDR monitoring.

Hackers Exploit Amazon SES to Send Over 50,000 Malicious Emails Daily in Large-Scale Phishing Campaign

Posted: September 09, 2025

Categories: Phishing, Email And Password, Hacker, Amazon

Tags: fp-3b, fp-3a, fp-2d, fo-2b

Author: Npav Lab

Cybercriminals abused compromised AWS credentials to hijack Amazon SES, sending 50,000+ phishing emails daily by bypassing sandbox limits. Learn how to detect and prevent SES abuse.

Hackers Use Fake Domains to Launch Cyberattacks Targeting 2026 FIFA World Cup

Posted: September 04, 2025

Categories: Cyber Attack, Hacker

Tags: fp-3b, fp-3a, fp-1b, f-3c

Author: Npav Lab

Cybercriminals register deceptive domains mimicking FIFA World Cup sites to steal data and distribute malware ahead of the 2026 tournament. Learn about the attack methods and protection strategies.

Hackers Exploit macOS Security Features to Distribute Malware: What You Need to Know

Posted: September 02, 2025

Categories: Malware Alerts, Hacker

Tags: fp-4c, fp-3b, fp-3a, fp-1b

Author: Npav Lab

Hackers are exploiting macOS security features like Keychain, TCC, SIP, and Gatekeeper to spread malware. Learn how to detect and prevent these advanced macOS attacks.

Pakistani Hackers Infect 1.88 Million Devices with Malware via Pirated Software

Posted: August 18, 2025

Categories: Malware Alerts, Hacker

Tags: fp-3b, fp-3a, fp-1b, fp-1a

Author: Npav Lab

Discover how a Pakistan-based cybercrime network exploited pirated software to infect 1.88 million devices and steal $4.67 million in credentials. Learn about their tactics and operation details.

Hackers Bypass Microsoft Defender to Deploy Akira Ransomware

Posted: August 11, 2025

Categories: Ransomware, Hacker, Microsoft

Tags: fp6a, fp-6b, fp-4a, fp-1b, fp-1a

Author: Npav Lab

Hackers exploit a legitimate driver to bypass Microsoft Defender and install Akira ransomware. Learn how this vulnerability works and how to protect your PC.

Hackers Exploit QuickAssist to Steal Data in Under Five Minutes

Posted: August 08, 2025

Categories: Data Breach, Hacker

Tags: fp-6a, fp-4a, fp-1b, fp-1a

Author: Npav Lab

Cybercriminals compromised corporate systems in under five minutes by exploiting QuickAssist and PowerShell scripting. Learn how social engineering facilitated this rapid breach.

Hackers Exploit Free Trials of EDR Software to Bypass Security Protections

Posted: August 07, 2025

Categories: Security, Hacker

Tags: fp-6d, fp-6c, fp-6b, fp-5a, fp-4b, fp-4a

Author: Npav Lab

Cybercriminals are using free trials of Endpoint Detection and Response (EDR) software to disable existing security measures. Learn about the BYOEDR attack technique and its implications.

Over 84,000 Indian Gaming Accounts Leaked in 2024

Posted: August 07, 2025

Categories: Data Breach, Hacker

Tags: fp-3b, fp-3a, fp-1b, fp-1a

Author: Npav Lab

In 2024, over 84,000 online gaming accounts were leaked in India, according to Kaspersky. Discover the impact of this data breach and the state of gaming security in the APAC region.