NPAV Logo

Shopping Cart My Cart 0
₹0.00
Currency
INR
Currency
INR

fp-3a

  1. RevengeHotels Uses AI-Generated Scripts to Deploy VenomRAT Malware on Windows

    RevengeHotels Uses AI-Generated Scripts to Deploy VenomRAT Malware on Windows

    Posted: September 17, 2025
    Categories: Malware Alerts, Windows, RAT, AI
    Tags: fp-6d, fp-3b, fp-3a, fp-1b, fp-1a
    Author: Npav Lab
    Views: 27
    RevengeHotels (TA558) escalates cyberattacks with AI-crafted loaders delivering VenomRAT malware, targeting Windows users via phishing. The malware features stealth, persistence, and encrypted communication.
    Read more
  2. Spring Framework and Security Vulnerabilities Allow Authorization Bypass in Generic Types

    Spring Framework and Security Vulnerabilities Allow Authorization Bypass in Generic Types

    Posted: September 16, 2025
    Categories: Security, vulnerability
    Tags: fp-3b, fp-3a, fp-1b
    Author: Npav Lab
    Views: 23
    Two medium-severity vulnerabilities in Spring Framework and Spring Security enable authorization bypass via flawed annotation detection on generic superclasses. Upgrade to fixed versions immediately to secure your applications.
    Read more
  3. Mustang Panda Deploys SnakeDisk USB Worm and Yokai Backdoor Targeting Thailand

    Mustang Panda Deploys SnakeDisk USB Worm and Yokai Backdoor Targeting Thailand

    Posted: September 16, 2025
    Categories: Malware Alerts
    Tags: fp-3b, fp-3a, fp-1b
    Author: Npav Lab
    Views: 38
    Mustang Panda, a China-linked threat actor, uses the SnakeDisk USB worm and updated TONESHELL backdoors to target Thailand-based IPs, deploying the Yokai backdoor for remote access. Learn about their evolving malware tactics and focus on Thailand.
    Read more
  4. Fake Madgicx Plus and SocialMetrics Extensions Hijack Meta Business Accounts

    Fake Madgicx Plus and SocialMetrics Extensions Hijack Meta Business Accounts

    Posted: September 11, 2025
    Categories: Browser Hijack, Social Media, Facebook
    Tags: fp-3b, fp-3a, fp-2c, fp-2b, fp-1b, fp-1a
    Author: Npav Lab
    Views: 27
    Malicious browser extensions SocialMetrics Pro and Madgicx Plus steal Facebook session cookies and credentials to hijack Meta Business accounts. Learn how these fake tools target advertisers via malvertising and fake websites.
    Read more
  5. Cursor AI Code Editor RCE Vulnerability Enables Automatic Execution of Malicious Code

    Cursor AI Code Editor RCE Vulnerability Enables Automatic Execution of Malicious Code

    Posted: September 11, 2025
    Categories: vulnerability, AI
    Tags: fp-3b, fp-3a, fp-1a
    Author: Npav Lab
    Views: 34
    A remote code execution flaw in Cursor AI Code Editor allows malicious code to run automatically when opening a project. Learn how disabling Workspace Trust exposes developers and how to protect your environment.
    Read more
  6. SpamGPT: AI-Powered Phishing Toolkit Enabling Massive Email Attacks

    SpamGPT: AI-Powered Phishing Toolkit Enabling Massive Email Attacks

    Posted: September 09, 2025
    Categories: Phishing, Email And Password, AI
    Tags: fp-3d, fp-3c, fp-3b, fp-3a, fp-2d, fp-1b
    Author: Npav Lab
    Views: 83
    SpamGPT is a dark web “spam-as-a-service” platform using AI to automate large-scale phishing campaigns. Learn how KaliGPT and SMTP cracking training empower cybercriminals.
    Read more
  7. Hackers Exploit Amazon SES to Send Over 50,000 Malicious Emails Daily in Large-Scale Phishing Campaign

    Hackers Exploit Amazon SES to Send Over 50,000 Malicious Emails Daily in Large-Scale Phishing Campaign

    Posted: September 09, 2025
    Categories: Phishing, Email And Password, Hacker, Amazon
    Tags: fp-3b, fp-3a, fp-2d, fo-2b
    Author: Npav Lab
    Views: 36
    Cybercriminals abused compromised AWS credentials to hijack Amazon SES, sending 50,000+ phishing emails daily by bypassing sandbox limits. Learn how to detect and prevent SES abuse.
    Read more
  8. Critical pgAdmin4 Vulnerability CVE-2025-9636 Allows Unauthorized Account Access

    Critical pgAdmin4 Vulnerability CVE-2025-9636 Allows Unauthorized Account Access

    Posted: September 08, 2025
    Categories: vulnerability
    Tags: fp-3b, fp-3a, fp-1b
    Author: Npav Lab
    Views: 38
    A high-severity COOP vulnerability in pgAdmin4 (up to version 9.7) enables attackers to bypass authentication and hijack accounts. Update to version 9.8 immediately to protect your PostgreSQL environment.
    Read more
  9. Cybercriminals Exploit X’s Grok AI to Bypass Ad Protections and Spread Malware

    Cybercriminals Exploit X’s Grok AI to Bypass Ad Protections and Spread Malware

    Posted: September 08, 2025
    Categories: Malware Alerts, Twitter, AI
    Tags: fp-3b, fp-3a, fp-1b, fp-1a
    Author: Npav Lab
    Views: 31
    Cybercriminals use X’s AI assistant Grok to bypass ad restrictions and distribute malware through hidden links, reaching millions. Learn about the “Grokking” technique and its impact.
    Read more
  10. Hackers Use Fake Domains to Launch Cyberattacks Targeting 2026 FIFA World Cup

    Hackers Use Fake Domains to Launch Cyberattacks Targeting 2026 FIFA World Cup

    Posted: September 04, 2025
    Categories: Cyber Attack, Hacker
    Tags: fp-3b, fp-3a, fp-1b, f-3c
    Author: Npav Lab
    Views: 29
    Cybercriminals register deceptive domains mimicking FIFA World Cup sites to steal data and distribute malware ahead of the 2026 tournament. Learn about the attack methods and protection strategies.
    Read more
Page
Categories
Recent Posts
Map of seven Indian airports impacted by cyberattacks: Delhi, Mumbai, Kolkata, Hyderabad, and Bengaluru, showing GPS spoofing locations.
Cyberattack Hits Seven Indian Airports: GPS Spoofing Confirmed, No Flights Disrupted
December 02, 2025
Comparison of fake phishing domain rnicrosoft.com mimicking real Microsoft.com to steal logins via typosquatting.
Phishing Scam Alert: Hackers Swap 'm' for 'rn' to Fake Microsoft and Steal Your Logins
November 25, 2025
Scam alert infographic: Hotel booking with fake staff icon, arrows to QR code payments; protective shields for verification, with "Verify Directly" warning banner over a travel scene.
KTMS warns of hotel scams in Kerala—learn the tactics and tips to avoid losing money to impersonators.
November 17, 2025
Phishing alert infographic: Invoice email with VBS attachment, arrows to XWorm stealing data; protective shields for filtering and training, with "Verify Emails" warning banner over an inbox.
Fake Invoices Spread XWorm: Hackers Steal Login Data
November 17, 2025
Malware alert infographic: Photo frame with auto-download arrows to spyware; protective shields for updates and isolation, with "Secure Your IoT" warning banner over a smart home.
Android Photo Frames: Malware Infects Devices Automatically
November 14, 2025
Back to Top