fp-4b

OneDrive Phishing Attack Targets Corporate Executives for Credential Theft

Posted: September 03, 2025

Categories: Cyber Attack, Data Breach, Phishing

Tags: fp-6d, fp-4b, fp-1b

Author: Npav Lab

A sophisticated OneDrive spearphishing campaign targets corporate executives with fake HR emails and Microsoft Office 365 login pages to steal credentials. Learn how to recognize and prevent this threat.

Sindoor Dropper Malware Targets Linux Systems Using Weaponized .desktop Files

Posted: September 01, 2025

Categories: Malware Alerts

Tags: fp-6e, fp-4b, fp-3b, fp-3a

Author: Npav Lab

Discover how Sindoor Dropper malware uses weaponized .desktop files to infect Linux systems via spear-phishing and deploys MeshAgent RAT.

PromptLock: The First AI-Powered Ransomware Discovered Using OpenAI's gpt-oss:20b Model

Posted: August 28, 2025

Categories: Ransomware, AI

Tags: fp-4c, fp-4b, fp-4a, fp-3b, fp-3a, fp-1b

Author: Npav Lab

Discover PromptLock, the first AI-powered ransomware using OpenAI's gpt-oss:20b model, enabling sophisticated attacks across multiple platforms.

Happy Birthday Linux: Celebrating 34 Years of Open-Source Innovation

Posted: August 25, 2025

Categories: Microsoft, NPAV Announcement

Tags: fp-6e, fp-4b, fp-1b

Author: Npav Lab

Join us in celebrating 34 years of Linux! Discover its journey from a hobby project to a powerhouse in computing, powering smartphones, supercomputers, and more.

N-able N-Central Insecure Deserialization Vulnerability: Risks and Mitigation

Posted: August 14, 2025

Categories: vulnerability

Tags: fp-5c, fp-4b, fp-1b

Author: Npav Lab

A critical insecure deserialization vulnerability in N-able N-Central could allow attackers to execute arbitrary commands. Learn about the risks and recommended actions for organizations.

Hackers Exploit Free Trials of EDR Software to Bypass Security Protections

Posted: August 07, 2025

Categories: Security, Hacker

Tags: fp-6d, fp-6c, fp-6b, fp-5a, fp-4b, fp-4a

Author: Npav Lab

Cybercriminals are using free trials of Endpoint Detection and Response (EDR) software to disable existing security measures. Learn about the BYOEDR attack technique and its implications.

Urgent Alert: Microsoft SharePoint Zero-Day Vulnerability 'ToolShell' Actively Exploited

Posted: July 22, 2025

Categories: vulnerability, Microsoft

Tags: fp-6a, fp-4b, fp-4a

Author: Npav Lab

Microsoft has disclosed a critical zero-day vulnerability in SharePoint Server (CVE-2025-53770) with a CVSS score of 9.8. Learn about the active exploitation, impact on enterprises, and emergency patches available.