NPAV Logo

Shopping Cart My Cart 0
₹0.00
Currency
INR
Currency
INR

Malware Alerts

  1. Malicious Loan App "RapiPlata" Infects Over 150,000 Devices on iOS and Android

    Malicious Loan App "RapiPlata" Infects Over 150,000 Devices on iOS and Android

    Posted: June 17, 2025
    Categories: Malware Alerts, Android Security, Financial fraud, Fraud Protector
    Tags: user privacy, spyloan malware, social engineering, rapiplata loan app, malicious app, ios android malware, financial fraud, data theft, cybersecurity threat, app store vulnerabilities
    Author: Npav Lab
    Views: 24
    A fraudulent loan app, "RapiPlata," has infected over 150,000 iOS and Android devices, stealing sensitive data and threatening users. Learn about the app's malicious tactics and ongoing risks.
    Read more
  2. 295 Malicious IPs Target Apache Tomcat Manager with Coordinated Brute-Force Attacks

    295 Malicious IPs Target Apache Tomcat Manager with Coordinated Brute-Force Attacks

    Posted: June 12, 2025
    Categories: Security, Malware Alerts, Cyber Attack, Data Breach
    Tags: security vulnerabilities, security cameras, rtsp, malicious ips, http, greynoise, exposed services, digitalocean, cybersecurity, brute-force attacks, authentication measures, apache tomcat manager, access restrictions
    Author: Npav Lab
    Views: 11
    GreyNoise warns of coordinated brute-force attacks on Apache Tomcat Manager interfaces, involving 295 malicious IPs. Learn about the risks and recommended security measures.
    Read more
  3. Fake Instagram Growth Tool "imad213" Steals Credentials: Malware Alert!

    Fake Instagram Growth Tool "imad213" Steals Credentials: Malware Alert!

    Posted: June 11, 2025
    Categories: Malware Alerts, Cyber Attack, Data Breach, Instagram
    Tags: socialmedia, security, phishing, malware, instagram, infosec, imad213, hacking, growthtool, cybersecurity, credentialtheft
    Author: Npav Lab
    Views: 15
    A new malware campaign disguised as an Instagram growth tool is stealing login credentials. Learn how "imad213" works and how to protect your account.
    Read more
  4. FIN6 Leverages Fake LinkedIn Resumes & AWS to Spread More_eggs Malware

    FIN6 Leverages Fake LinkedIn Resumes & AWS to Spread More_eggs Malware

    Posted: June 11, 2025
    Categories: Ransomware, Malware Alerts, Cyber Attack, vulnerability, LinkedIn
    Tags: recruiters, phishing campaign, malware via linkedin, malware, linkedin resumes, fin6, aws
    Author: Npav Lab
    Views: 16
    FIN6 cybercrime group uses fake resumes hosted on AWS to deliver More_eggs malware via LinkedIn. Learn how they target recruiters and evade detection.
    Read more
  5. China-Linked Cyber Espionage Group Targets 70+ Organizations

    China-Linked Cyber Espionage Group Targets 70+ Organizations

    Posted: June 10, 2025
    Categories: Ransomware, Security, Malware Alerts, Cyber Attack, Data Backup, Data Breach, Spyware
    Tags: unc5174, purplehaze, cyber espionage group, china cyber espionage, apt15
    Author: Npav Lab
    Views: 21
    Discover how a China-linked cyber espionage group, including APT15 and UNC5174, targeted over 70 organizations across government, media, and other sectors. Learn about the malware used, including ShadowPad and GoReShell, and the exploited vulnerabilities.
    Read more
  6. New Supply Chain Malware Campaign Targets npm and PyPI Ecosystems, Affecting Millions

    New Supply Chain Malware Campaign Targets npm and PyPI Ecosystems, Affecting Millions

    Posted: June 08, 2025
    Categories: Ransomware, Security, Malware Alerts, Spyware
    Tags: supply chain malware, software supply chain attacks, remote access trojan, pypi vulnerabilities, package security, npm security, malware distribution, data protection, cybersecurity threats, credential harvesting
    Author: Npav Lab
    Views: 160
    Cybersecurity experts reveal a significant supply chain attack affecting npm and PyPI ecosystems, compromising numerous packages and exposing millions of users to malware. Learn about the affected packages and how to protect yourself.
    Read more
  7. DarkCloud Stealer v4 Abuses AutoIt Scripts to Evade Detection and Hijack Login Credentials

    DarkCloud Stealer v4 Abuses AutoIt Scripts to Evade Detection and Hijack Login Credentials

    Posted: May 16, 2025
    Categories: Security, Malware Alerts
    Tags: phishing attacks, darkcloud stealer
    Author: Npav Lab
    Views: 71
    The latest variant of DarkCloud Stealer uses AutoIt scripting and advanced evasion techniques to target financial, healthcare, and e-commerce sectors. With over 120,000 accounts compromised since March 2025, this malware showcases a dangerous blend of legacy scripting abuse and stealthy credential theft.
    Read more
  8. Malicious Payload Hidden in a Single Character: Google Calendar Becomes a New Cyber Weapon

    Malicious Payload Hidden in a Single Character: Google Calendar Becomes a New Cyber Weapon

    Posted: May 15, 2025
    Categories: Ransomware, Malware Alerts
    Tags: phishing, google calendar malware
    Author: Npav Lab
    Views: 51
    Cybercriminals have devised an alarming new tactic by hiding malware in Google Calendar invites using invisible Unicode characters. This stealthy technique enables the delivery of malicious payloads through trusted platforms—bypassing traditional security mechanisms with a single deceptive character.
    Read more
  9. Hidden in Plain Sight: Hackers Use JPG Images to Deploy Fully Undetectable Ransomware

    Hidden in Plain Sight: Hackers Use JPG Images to Deploy Fully Undetectable Ransomware

    Posted: May 13, 2025
    Categories: Ransomware, Malware Alerts
    Tags: stegomalware, jpg malware attack
    Author: Npav Lab
    Views: 359
    Cybercriminals are now leveraging steganography to hide ransomware in ordinary JPG image files, deploying Fully Undetectable (FUD) malware that bypasses traditional security solutions. These advanced tactics exploit metadata and pixel data to deliver multi-stage attacks — silently and effectively.
    Read more
  10. Operation Sindoor: CERT-In Boosts Cyber Defenses Across Critical Indian Sectors Amid DDoS Surge

    Operation Sindoor: CERT-In Boosts Cyber Defenses Across Critical Indian Sectors Amid DDoS Surge

    Posted: May 08, 2025
    Categories: Malware Alerts, DDoS
    Tags: operation sindoor, ddos attacks
    Author: Npav Lab
    Views: 127
    As tensions escalate in the wake of the Pahalgam attack, India’s digital frontline is now under coordinated cyber assault. The government’s Computer Emergency Response Team (CERT-In) has issued urgent advisories, calling for heightened vigilance across banks, strategic sectors, and private enterprises. The increased threat environment has prompted a nationwide effort—public and private—to fortify cyber defenses under Operation Sindoor.
    Read more
Page
Categories
Recent Posts
SparkKitty Malware Overview
SparkKitty Malware: Stealing Photos from iOS and Android Users
July 09, 2025
Fake PDF App on Google Play
Anatsa Trojan: 90,000 Users Infected by Malicious PDF App on Google Play
July 09, 2025
Cyber Fraud in Pharmaceutical Industry
Pharma COO Scammed: ₹1.9 Crore Lost in Cyber Fraud Scheme
July 09, 2025
IRCTC Tatkal Ticket Fraud
IRCTC vs. Scammers: How Tatkal Ticket Fraud is Impacting Travelers
July 09, 2025
Traffic E-Challan Scam Alert
Traffic E-Challan Scam: Identify and Avoid Fraudulent Messages Effectively
July 08, 2025
Archive
July 2025
June 2025
May 2025
April 2025
March 2025
February 2025
January 2025
December 2024
November 2024
October 2024
September 2024
August 2024
July 2024
June 2024
May 2024
April 2024
March 2024
February 2024
January 2024
December 2023
November 2023
October 2023
September 2023
August 2023
July 2023
June 2023
May 2023
April 2023
March 2023
February 2023
January 2023
December 2022
November 2022
October 2022
September 2022
August 2022
July 2022
June 2022
May 2022
April 2022
February 2022
January 2022
December 2021
November 2021
October 2021
September 2021
August 2021
July 2021
June 2021
May 2021
April 2021
March 2021
February 2021
January 2021
December 2020
November 2020
October 2020
September 2020
August 2020
July 2020
June 2020
May 2020
April 2020
March 2020
February 2020
January 2020
December 2019
November 2019
October 2019
September 2019
August 2019
July 2019
June 2019
May 2019
April 2019
March 2019
February 2019
January 2019
December 2018
August 2018
July 2018
June 2018
May 2018
April 2018
March 2018
January 2018
December 2017
November 2017
October 2017
August 2017
July 2017
May 2017
January 2017
December 2016
November 2016
October 2016
September 2016
August 2016
July 2016
June 2016
May 2016
April 2016
March 2016
February 2016
January 2016
December 2015
November 2015
October 2015
September 2015
August 2015
July 2015
June 2015
May 2015
April 2015
March 2015
February 2015
January 2015
December 2014
November 2014
October 2014
September 2014
August 2014
July 2014
June 2014
May 2014
April 2014
March 2014
January 2014
Tags
cybersecurity cybercrime cyber attack phishing phishing attacks data breach cyber threats data theft phishing attack malware cyber fraud android malware credential theft cybersecurity threats ransomware financial fraud ransomeware social engineering data protection financial security cyber security #cybersecurity cyberthreats phishingattack network security cyber threat malware distribution identity theft security vulnerabilities cert-in data stealing ransomware attacks cyber crime phishing scam online fraud data security ddos attack critical vulnerability phishing email ransomware attack microsoft cyber attacks digital safety twitter ddos india cybercriminals cyberattack trojan malware attack
RSS Feed RSS Feed
Back to Top