NPAV Logo

Shopping Cart My Cart 0
₹0.00
Currency
INR
Currency
INR

cybersecurity threats

  1. AI Malware PoC: Reinforcement Learning Evades Microsoft Defender

    AI Malware PoC: Reinforcement Learning Evades Microsoft Defender

    Posted: July 10, 2025
    Categories: Malware Alerts, Microsoft
    Tags: trojan malware, reinforcement learning, qwen 2.5 model, microsoft defender evasion, malware development, large language models, evasion tec, cybersecurity threats, black hat conference, ai malware
    Author: Npav Lab
    Views: 109
    Discover how a new Trojan malware, developed using reinforcement learning, can consistently bypass Microsoft Defender for Endpoint. Learn about its implications for cybersecurity and the advancements in AI-driven malware development.
    Read more
  2. SparkKitty Malware: Stealing Photos from iOS and Android Users

    SparkKitty Malware: Stealing Photos from iOS and Android Users

    Posted: July 09, 2025
    Categories: Malware Alerts, Data Breach, Android Security
    Tags: trojan malware, sparkkitty malware, southeast asia cybercrime, photo theft malware, mobile malware campaign, ios and android security, enterprise provisioning profiles, cybersecurity threats, cryptocurrency wallet security, app store infiltration
    Author: Npav Lab
    Views: 98
    Learn about SparkKitty, a sophisticated Trojan malware targeting iOS and Android devices to steal personal photos. Discover its distribution methods and the risks it poses, particularly in Southeast Asia and China.
    Read more
  3. Anatsa Trojan: 90,000 Users Infected by Malicious PDF App on Google Play

    Anatsa Trojan: 90,000 Users Infected by Malicious PDF App on Google Play

    Posted: July 09, 2025
    Categories: Google, Malware Alerts, Trojan, Banking Trojan
    Tags: protect against banking trojans, mobile malware campaign, google play store scam, fake pdf app, document viewer trojan, cybersecurity threats, cybercrime tactics, banking credential theft, android banking malware, anatsa trojan
    Author: Npav Lab
    Views: 90
    Discover how the Anatsa banking trojan infected 90,000 users through a fake PDF app on Google Play. Learn about the tactics used by cybercriminals and how the malware operates to steal banking credentials.
    Read more
  4. New Malware Campaign Exploits Fake Cloudflare Verification Screens

    New Malware Campaign Exploits Fake Cloudflare Verification Screens

    Posted: July 04, 2025
    Categories: Malware Alerts, Hacking
    Tags: social engineering campaign, powershell malware, malware evasion techniques, malware distribution tactics, fake captcha verification, cybersecurity threats, cloudflare malware attack
    Author: Npav Lab
    Views: 32
    Write a concise meta description summarizing the post while incorporating keywords. For example: "A new social engineering campaign uses fake Cloudflare verification screens to distribute malware. Learn how hackers exploit trusted security services to execute malicious code.
    Read more
  5. Resurgence of Prometei Botnet: Targeting Linux Servers for Cryptocurrency Mining

    Resurgence of Prometei Botnet: Targeting Linux Servers for Cryptocurrency Mining

    Posted: June 23, 2025
    Categories: Cyber Attack, Botnet, Financial fraud, Fraud Protector
    Tags: prometei botnet, phishing attacks, palo alto networks, malware resurgence, linux servers, eternalblue vulnerability, cybersecurity threats, cybercrime, cryptocurrency mining, credential theft
    Author: Npav Lab
    Views: 23
    The Prometei botnet has resurfaced, targeting Linux servers for cryptocurrency mining and credential theft. Discover the sophisticated techniques used in this malware operation and how it poses a threat to enterprise infrastructure.
    Read more
  6. New SuperCard Malware Exploits Hacked Android Phones to Steal Payment Card Data

    New SuperCard Malware Exploits Hacked Android Phones to Steal Payment Card Data

    Posted: June 19, 2025
    Categories: Malware Alerts, Android Security, Hacking, Credit card scam, Financial fraud
    Tags: supercard malware, social engineering attacks, payment card data theft, nfc malware, mobile payment fraud, malware-as-a-service, cybersecurity threats, contactless payment security, android payment security
    Author: Npav Lab
    Views: 11
    A new malware strain called SuperCard exploits hacked Android phones to steal payment card data during contactless transactions. Learn about its infection mechanism and the growing threat to mobile payment security.
    Read more
  7. Discord Invite Link Hijacking: A New Threat Targeting Crypto Wallets with AsyncRAT and Skuld Stealer

    Discord Invite Link Hijacking: A New Threat Targeting Crypto Wallets with AsyncRAT and Skuld Stealer

    Posted: June 16, 2025
    Categories: Hacking, Hacker, Payment Risk
    Tags: social engineering, skuld stealer, malware campaign, discord invite link hijacking, cybersecurity threats, crypto wallet theft, clickfix technique, asyncrat
    Author: Npav Lab
    Views: 11
    A new malware campaign exploits Discord's invite system to deliver AsyncRAT and Skuld Stealer, targeting crypto wallets. Learn how attackers hijack links and the risks involved.
    Read more
  8. Google Account Recovery Vulnerability Exposes Users' Phone Numbers to Attackers

    Google Account Recovery Vulnerability Exposes Users' Phone Numbers to Attackers

    Posted: June 10, 2025
    Categories: Google, Cyber Attack, Data Breach, Browser Hijack, vulnerability
    Tags: user data protection, phone number exposure, legacy system vulnerabilities, google security breach, google account recovery vulnerability, cybersecurity threats, cve google security flaw, brute-force attack on google
    Author: Npav Lab
    Views: 14
    Learn about a critical vulnerability in Google's account recovery system that allowed attackers to access any user's phone number through a brute-force attack, highlighting the importance of security audits for legacy systems.
    Read more
  9. Wazuh Server Vulnerability Exploited by Two Distinct Botnets for Mirai-Based DDoS Attacks

    Wazuh Server Vulnerability Exploited by Two Distinct Botnets for Mirai-Based DDoS Attacks

    Posted: June 10, 2025
    Categories: Security, Cyber Attack, Botnet, vulnerability, DDoS
    Tags: wazuh server vulnerability, remote code execution vulnerabilities, mirai botnet attacks, iot security vulnerabilities, ddos attacks, cybersecurity threats, cve-2025-24016, botnet exploitation
    Author: Npav Lab
    Views: 16
    Discover how two separate botnets exploit the critical Wazuh Server vulnerability (CVE-2025-24016) to launch Mirai-based DDoS attacks, targeting IoT devices and highlighting the urgency of cybersecurity measures.
    Read more
  10. New Supply Chain Malware Campaign Targets npm and PyPI Ecosystems, Affecting Millions

    New Supply Chain Malware Campaign Targets npm and PyPI Ecosystems, Affecting Millions

    Posted: June 08, 2025
    Categories: Ransomware, Security, Malware Alerts, Spyware
    Tags: supply chain malware, software supply chain attacks, remote access trojan, pypi vulnerabilities, package security, npm security, malware distribution, data protection, cybersecurity threats, credential harvesting
    Author: Npav Lab
    Views: 226
    Cybersecurity experts reveal a significant supply chain attack affecting npm and PyPI ecosystems, compromising numerous packages and exposing millions of users to malware. Learn about the affected packages and how to protect yourself.
    Read more
Page
Categories
Recent Posts
SAP NetWeaver vulnerability exploitation
Hackers Exploit SAP NetWeaver Vulnerability to Deploy Auto-Color Linux Malware
July 30, 2025
SonicWall SMA 100 vulnerabilities
Critical Vulnerabilities in SonicWall SMA 100 Series SSL-VPN Appliances Exposed
July 30, 2025
impact of the Tea app data breach
Major Data Breach at Tea App: 11 Million Women Users' Private Information Exposed
July 30, 2025
Diagram illustrating Shuyal malware's data extraction methods
Shuyal Malware: The New Threat Stealing Data Across 19 Browsers
July 30, 2025
Diagram illustrating Cross-Site Request Forgery (CSRF) vulnerability
PaperCut NG/MF Vulnerability: Understanding the Cross-Site Request Forgery (CSRF) Risk
July 29, 2025
Back to Top