fp-4b

Hackers Exploit n8n AI Workflow to Deliver Malware via Trusted Webhooks

Posted: April 16, 2026

Categories: Malware Alerts, Hacker, AI

Tags: fp-4b, fp-4a, fp-3a, fp-2c, fp-2b, fp-2a, fp-1b, fp-1a, f-3b

Author: Npav Lab

Cybercriminals abuse n8n AI workflow automation to deliver malware through trusted webhooks, bypassing security filters and targeting enterprise users.

Booking.com Data Breach Exposes Customer Information, Raises Phishing Risks

Posted: April 15, 2026

Categories: Data Breach, Phishing, Impersonation phishing, Whale phishing

Tags: fp-4b, fp-4a, fp-3b, fp-3a, fp-2b, fp-2a, fp-1b, fp-1a

Author: Npav Lab

Booking.com confirms data breach exposing customer booking details. Hackers may use stolen data for phishing and fraud attacks targeting travelers.

AI Router Vulnerabilities Enable Code Injection and Data Theft Attacks

Posted: April 14, 2026

Categories: Cyber Attack, Data Breach, vulnerability, AI

Tags: fp-4b, fp-4a, fp-3b, fp-3a, fp-2b, fp-2a, fp-1b, fp-1a

Author: Npav Lab

AI router flaws allow attackers to inject malicious code, steal credentials, and hijack AI workflows. Learn risks and how to secure AI systems.

Massive China Supercomputer Breach Exposes Defense Data for Sale

Posted: April 13, 2026

Categories: Data Breach, Hacking, Hacker

Tags: fp-5a, fp-4b, fp-4a, fp-3b, fp-3a, fp-2a, fp-1b, fp-1a

Author: Npav Lab

Hackers allegedly stole 10 petabytes of sensitive data from a Chinese supercomputer, including defense files and missile schematics, now being sold online.

React Server Components Vulnerability CVE-2026-23869 Enables DoS Attacks

Posted: April 10, 2026

Categories: Cyber Attack, vulnerability, DDoS

Tags: fp-4b, fp-4a, fp-3b, fp-3a, fp-2c, fp-2b, fp-2a, fp-1b, fp-1a

Author: Npav Lab

A critical React Server Components flaw (CVE-2026-23869) allows attackers to trigger DoS attacks by exhausting server resources with crafted requests.

GPUBreach Attack Enables Full CPU Privilege Escalation via GPU Memory Exploit

Posted: April 07, 2026

Categories: Cyber Attack

Tags: fp-5a, fp-4b, fp-4a, fp-3b, fp-3a, fp-1b, fp-1a

Author: Npav Lab

New GPUBreach attack uses RowHammer on GPU memory to gain full CPU access, bypassing protections and posing risks to AI and cloud systems.

Infiniti Stealer Malware Targets macOS via Fake Cloudflare CAPTCHA

Posted: March 27, 2026

Categories: Malware Alerts, Data Breach

Tags: fp-5a, fp-4b, fp-4a, fp-3b, fp-3a, fp-1b, fp-1a

Author: Npav Lab

Infiniti Stealer is a new macOS malware spreading through fake Cloudflare CAPTCHA pages, tricking users into running malicious commands and stealing sensitive data.

Phishers Abuse Safe Links With Multi-Layer URL Rewriting to Evade Detection

Posted: March 17, 2026

Categories: Cyber Attack, Phishing

Tags: fp-4b, fp-4a, fp-3a, fp-1b, fp-1a

Author: Npav Lab

Cyber attackers are abusing safe link URL rewriting and multi-layer redirects to bypass email security filters and steal Microsoft 365 credentials through phishing campaigns.

Silver Dragon APT Linked to APT41 Targeting Governments with Cobalt Strike & Google Drive C2

Posted: March 04, 2026

Categories: Google, Cyber Attack, Data Breach

Tags: fp-5a, fp-4c, fp-4b, fp-4a, fp-1b, fp-1a

Author: Npav Lab

Silver Dragon, a threat group linked to APT41, is targeting government entities using Cobalt Strike, DLL sideloading, DNS tunneling, and Google Drive-based command-and-control techniques.

OneDrive Phishing Attack Targets Corporate Executives for Credential Theft

Posted: September 03, 2025

Categories: Cyber Attack, Data Breach, Phishing

Tags: fp-6d, fp-4b, fp-1b

Author: Npav Lab

A sophisticated OneDrive spearphishing campaign targets corporate executives with fake HR emails and Microsoft Office 365 login pages to steal credentials. Learn how to recognize and prevent this threat.