NPAV Logo

Shopping Cart My Cart 0
₹0.00
Currency
INR
Currency
INR

fp-5b

  1. Threat Actors Exploit Dynamic DNS Providers for Resilient C2 Infrastructure: APT28, APT29, and More

    Threat Actors Exploit Dynamic DNS Providers for Resilient C2 Infrastructure: APT28, APT29, and More

    Posted: September 29, 2025
    Categories: Hacker
    Tags: fp-6e, fp-6d, fp-6c, fp-5b, fp-1b
    Author: Npav Lab
    Views: 35
    Cybercriminals leverage Dynamic DNS services to evade detection and build persistent command-and-control networks, abusing 70,000+ domains with minimal oversight. APT groups like Fancy Bear and Chinese hackers use obfuscation and rotations—defenders face growing challenges in mitigation.
    Read more
  2. CISA Advisory: Hackers Breach U.S. Federal Agency Network via GeoServer RCE (CVE-2024-36401) in 3-Week Undetected Attack

    CISA Advisory: Hackers Breach U.S. Federal Agency Network via GeoServer RCE (CVE-2024-36401) in 3-Week Undetected Attack

    Posted: September 24, 2025
    Categories: Data Breach, Hacker
    Tags: fp6a, fp-6b, fp-5b, fp-5a, fp-1b
    Author: Npav Lab
    Views: 20
    CISA details threat actors exploiting CVE-2024-36401 in GeoServer for initial access to a U.S. federal network on July 11, 2024, using webshells, dirtycow escalation, and lateral movement—undetected until July 31. Key lessons: Immediate KEV patching, enhanced IR plans, and continuous EDR monitoring.
    Read more
  3. Critical Vulnerability in Dassault Systèmes DELMIA Apriso Risks Remote Code Execution

    Critical Vulnerability in Dassault Systèmes DELMIA Apriso Risks Remote Code Execution

    Posted: September 12, 2025
    Categories: vulnerability
    Tags: fp-5b, fp-5a, fp-1b
    Author: Npav Lab
    Views: 31
    A deserialization of untrusted data vulnerability in Dassault Systèmes DELMIA Apriso could allow remote code execution. Learn recommended actions to protect your systems.
    Read more
  4. Citrix Session Recording Vulnerabilities: Key Risks and Mitigation Strategies

    Citrix Session Recording Vulnerabilities: Key Risks and Mitigation Strategies

    Posted: August 26, 2025
    Categories: vulnerability
    Tags: fp-5b, fp-1b
    Author: Npav Lab
    Views: 22
    Discover critical vulnerabilities in Citrix Session Recording that pose risks to organizations. Learn about improper privilege management and deserialization flaws, along with recommended mitigation actions.
    Read more
  5. GitHub Copilot RCE Vulnerability (CVE-2025-53773) Allows Remote Code Execution via Prompt Injection

    GitHub Copilot RCE Vulnerability (CVE-2025-53773) Allows Remote Code Execution via Prompt Injection

    Posted: August 14, 2025
    Categories: vulnerability
    Tags: fp-5c, fp-5b, fp-5a, fp-1b
    Author: Npav Lab
    Views: 183
    A critical vulnerability in GitHub Copilot (CVE-2025-53773) enables remote code execution through prompt injection attacks, compromising developers' machines. Learn how this flaw works and its implications.
    Read more
  6. Trend Micro Apex One Zero-Day Vulnerabilities CVE-2025-54948 & CVE-2025-54987 Exploited

    Trend Micro Apex One Zero-Day Vulnerabilities CVE-2025-54948 & CVE-2025-54987 Exploited

    Posted: August 08, 2025
    Categories: vulnerability
    Tags: fp-5b, fp-5a, fp-1b, fp-1a
    Author: Npav Lab
    Views: 41
    Two critical zero-day vulnerabilities in Trend Micro Apex One (on-prem) devices, CVE-2025-54948 and CVE-2025-54987, are being exploited in the wild. Learn about their impact and mitigation strategies.
    Read more
  7. D-Link DNR-322L Vulnerability: Download of Code Without Integrity Check

    D-Link DNR-322L Vulnerability: Download of Code Without Integrity Check

    Posted: August 07, 2025
    Categories: vulnerability
    Tags: fp-6e, fp-6d, fp-6c, fp-6b, fp-6a, fp-5c, fp-5b, fp-5a
    Author: Npav Lab
    Views: 26
    Learn about the critical vulnerability in D-Link DNR-322L that allows code downloads without integrity checks. Discover recommended actions to secure your device.
    Read more
  8. Cisco Identity Services Engine Injection Vulnerability: Risks and Mitigations

    Cisco Identity Services Engine Injection Vulnerability: Risks and Mitigations

    Posted: July 29, 2025
    Categories: Data Breach, vulnerability
    Tags: fp-5b, fp-1b, fp-1a
    Author: Npav Lab
    Views: 35
    Learn about the injection vulnerability in Cisco Identity Services Engine (ISE) that could allow remote code execution. Discover recommended actions to mitigate risks and protect your network.
    Read more
Page
Categories
Recent Posts
Cybersecurity alert: India's digital growth fuels cybercrime; boost awareness to prevent fraud and losses.
India's Cybercrime Explosion: 22.68 Lakh Cases in 2024, ₹22,845 Crore Lost
December 04, 2025
Map of seven Indian airports impacted by cyberattacks: Delhi, Mumbai, Kolkata, Hyderabad, and Bengaluru, showing GPS spoofing locations.
Cyberattack Hits Seven Indian Airports: GPS Spoofing Confirmed, No Flights Disrupted
December 02, 2025
Comparison of fake phishing domain rnicrosoft.com mimicking real Microsoft.com to steal logins via typosquatting.
Phishing Scam Alert: Hackers Swap 'm' for 'rn' to Fake Microsoft and Steal Your Logins
November 25, 2025
Scam alert infographic: Hotel booking with fake staff icon, arrows to QR code payments; protective shields for verification, with "Verify Directly" warning banner over a travel scene.
KTMS warns of hotel scams in Kerala—learn the tactics and tips to avoid losing money to impersonators.
November 17, 2025
Phishing alert infographic: Invoice email with VBS attachment, arrows to XWorm stealing data; protective shields for filtering and training, with "Verify Emails" warning banner over an inbox.
Fake Invoices Spread XWorm: Hackers Steal Login Data
November 17, 2025
Back to Top