NPAV Logo

Shopping Cart My Cart 0
₹0.00
Currency
INR
Currency
INR

fp-3a

  1. Insight Partners Confirms Data Breach Exposing Personal Information After Months-Long Intrusion

    Insight Partners Confirms Data Breach Exposing Personal Information After Months-Long Intrusion

    Posted: September 18, 2025
    Categories: Cyber Attack, Data Breach
    Tags: fp-3a, fp-1b, fp-1a
    Author: Npav Lab
    Views: 29
    Insight Partners suffered a data breach from a social engineering attack that exposed personal data from HR and finance systems. The breach went undetected for nearly three months before ransomware deployment. Affected users receive identity protection.
    Read more
  2. RevengeHotels Uses AI-Generated Scripts to Deploy VenomRAT Malware on Windows

    RevengeHotels Uses AI-Generated Scripts to Deploy VenomRAT Malware on Windows

    Posted: September 17, 2025
    Categories: Malware Alerts, Windows, RAT, AI
    Tags: fp-6d, fp-3b, fp-3a, fp-1b, fp-1a
    Author: Npav Lab
    Views: 18
    RevengeHotels (TA558) escalates cyberattacks with AI-crafted loaders delivering VenomRAT malware, targeting Windows users via phishing. The malware features stealth, persistence, and encrypted communication.
    Read more
  3. Spring Framework and Security Vulnerabilities Allow Authorization Bypass in Generic Types

    Spring Framework and Security Vulnerabilities Allow Authorization Bypass in Generic Types

    Posted: September 16, 2025
    Categories: Security, vulnerability
    Tags: fp-3b, fp-3a, fp-1b
    Author: Npav Lab
    Views: 17
    Two medium-severity vulnerabilities in Spring Framework and Spring Security enable authorization bypass via flawed annotation detection on generic superclasses. Upgrade to fixed versions immediately to secure your applications.
    Read more
  4. Mustang Panda Deploys SnakeDisk USB Worm and Yokai Backdoor Targeting Thailand

    Mustang Panda Deploys SnakeDisk USB Worm and Yokai Backdoor Targeting Thailand

    Posted: September 16, 2025
    Categories: Malware Alerts
    Tags: fp-3b, fp-3a, fp-1b
    Author: Npav Lab
    Views: 24
    Mustang Panda, a China-linked threat actor, uses the SnakeDisk USB worm and updated TONESHELL backdoors to target Thailand-based IPs, deploying the Yokai backdoor for remote access. Learn about their evolving malware tactics and focus on Thailand.
    Read more
  5. Fake Madgicx Plus and SocialMetrics Extensions Hijack Meta Business Accounts

    Fake Madgicx Plus and SocialMetrics Extensions Hijack Meta Business Accounts

    Posted: September 11, 2025
    Categories: Browser Hijack, Social Media, Facebook
    Tags: fp-3b, fp-3a, fp-2c, fp-2b, fp-1b, fp-1a
    Author: Npav Lab
    Views: 17
    Malicious browser extensions SocialMetrics Pro and Madgicx Plus steal Facebook session cookies and credentials to hijack Meta Business accounts. Learn how these fake tools target advertisers via malvertising and fake websites.
    Read more
  6. Cursor AI Code Editor RCE Vulnerability Enables Automatic Execution of Malicious Code

    Cursor AI Code Editor RCE Vulnerability Enables Automatic Execution of Malicious Code

    Posted: September 11, 2025
    Categories: vulnerability, AI
    Tags: fp-3b, fp-3a, fp-1a
    Author: Npav Lab
    Views: 22
    A remote code execution flaw in Cursor AI Code Editor allows malicious code to run automatically when opening a project. Learn how disabling Workspace Trust exposes developers and how to protect your environment.
    Read more
  7. SpamGPT: AI-Powered Phishing Toolkit Enabling Massive Email Attacks

    SpamGPT: AI-Powered Phishing Toolkit Enabling Massive Email Attacks

    Posted: September 09, 2025
    Categories: Phishing, Email And Password, AI
    Tags: fp-3d, fp-3c, fp-3b, fp-3a, fp-2d, fp-1b
    Author: Npav Lab
    Views: 66
    SpamGPT is a dark web “spam-as-a-service” platform using AI to automate large-scale phishing campaigns. Learn how KaliGPT and SMTP cracking training empower cybercriminals.
    Read more
  8. Hackers Exploit Amazon SES to Send Over 50,000 Malicious Emails Daily in Large-Scale Phishing Campaign

    Hackers Exploit Amazon SES to Send Over 50,000 Malicious Emails Daily in Large-Scale Phishing Campaign

    Posted: September 09, 2025
    Categories: Phishing, Email And Password, Hacker, Amazon
    Tags: fp-3b, fp-3a, fp-2d, fo-2b
    Author: Npav Lab
    Views: 25
    Cybercriminals abused compromised AWS credentials to hijack Amazon SES, sending 50,000+ phishing emails daily by bypassing sandbox limits. Learn how to detect and prevent SES abuse.
    Read more
  9. Critical pgAdmin4 Vulnerability CVE-2025-9636 Allows Unauthorized Account Access

    Critical pgAdmin4 Vulnerability CVE-2025-9636 Allows Unauthorized Account Access

    Posted: September 08, 2025
    Categories: vulnerability
    Tags: fp-3b, fp-3a, fp-1b
    Author: Npav Lab
    Views: 30
    A high-severity COOP vulnerability in pgAdmin4 (up to version 9.7) enables attackers to bypass authentication and hijack accounts. Update to version 9.8 immediately to protect your PostgreSQL environment.
    Read more
  10. Cybercriminals Exploit X’s Grok AI to Bypass Ad Protections and Spread Malware

    Cybercriminals Exploit X’s Grok AI to Bypass Ad Protections and Spread Malware

    Posted: September 08, 2025
    Categories: Malware Alerts, Twitter, AI
    Tags: fp-3b, fp-3a, fp-1b, fp-1a
    Author: Npav Lab
    Views: 19
    Cybercriminals use X’s AI assistant Grok to bypass ad restrictions and distribute malware through hidden links, reaching millions. Learn about the “Grokking” technique and its impact.
    Read more
Page
Categories
Recent Posts
Security alert infographic: 7-Zip icon with red symlink arrows leading to code execution icons, malicious ZIP exploding into files; protective shields for updates and antivirus, with "Update Your Software" warning banner over a file extraction interface.
7-Zip Vulnerabilities: PoC Exploit Enables Remote Code Execution
October 18, 2025
Cyber fraud alert graphic: Elderly person on video call with fake official badge, money transfer arrows to scam accounts; handcuffed suspects and police icons, protective shields for verification and reporting, with "Verify Before Transferring" warning ba
Elderly Investor Loses ₹58 Crore in Fake Government Official Scam
October 18, 2025
Cyber threat infographic: Fake job interview page with malware download arrows to OtterCandy icons (RAT, stealer); protective shields for monitoring and whitelisting, with "Avoid Suspicious Downloads" warning banner over a digital network.
North Korean Hackers Use Fake Interviews to Spread OtterCandy Malware
October 18, 2025
Cyber threat infographic: TikTok video icon with PowerShell command arrows leading to malware icons (AuroStealer, crypto theft); protective shields for antivirus and MFA, with "Don't Run Unknown Commands" warning banner over a social media feed.
TikTok Videos Spread Malware: How Fake Photoshop Activators Infect Users
October 18, 2025
Microsoft's report shows AI boosting phishing success to 54% click-through—learn about ClickFix trends, nation-state AI use, and defenses like MFA to protect against evolving cyber attacks.
AI Phishing Emails 4.5x More Effective: Microsoft's Report on Cyber Threats
October 18, 2025
Back to Top