fp-6d - Page 3

Cybersecurity Alert: 8 Malicious NPM Packages Target Windows Chrome Users

Posted: September 01, 2025

Categories: Google, Windows

Tags: fp-6d, fp-6a

Author: Npav Lab

Researchers found 8 malicious NPM packages targeting Windows Chrome users with obfuscated code to steal passwords, credit cards, and crypto wallets. Learn more.

Coordinated Scanning Campaign Targets Microsoft RDP Services: Over 30,000 IPs Involved

Posted: August 26, 2025

Categories: Microsoft

Tags: fp-6d, fp-6a, fp-1b

Author: Npav Lab

A large-scale scanning campaign is targeting Microsoft Remote Desktop Protocol (RDP) services, utilizing over 30,000 unique IP addresses. Learn about the attack's methodology and implications for credential-based attacks.

Copilot Vulnerability Exposes Audit Logs, Allowing Unauthorized Access to Sensitive Files

Posted: August 20, 2025

Categories: Data Breach, vulnerability

Tags: fp-6d, fp-1b

Author: Npav Lab

A critical vulnerability in Microsoft’s Copilot for M365 has allowed unauthorized access to sensitive files without leaving a trace in audit logs. Learn about the implications for organizations and the lack of transparency from Microsoft.

Lockbit Linux ESXi Ransomware: Evasion Techniques and File Encryption Process

Posted: August 19, 2025

Categories: Ransomware

Tags: fp-6e, fp-6d, fp-6c, fp-6b, fp-6a, fp-4a

Author: Npav Lab

Discover the advanced evasion techniques and encryption methods used by the Lockbit ransomware variant targeting Linux-based ESXi servers. Learn how it operates and the implications for cybersecurity.

Critical Cisco Secure Firewall Management Center Vulnerability (CVE-2025-20265) Allows Remote Code Execution

Posted: August 19, 2025

Categories: vulnerability, firewall

Tags: fp-6d, fp-6c, fp-6b, fp-6a

Author: Npav Lab

Cisco has addressed a critical vulnerability (CVE-2025-20265) in its Secure Firewall Management Center Software, allowing unauthenticated remote attackers to execute arbitrary shell commands. Learn more about the vulnerability and affected versions.

Critical WinRAR Path Traversal Vulnerability (CVE-2025-8088) Exploited: Security Patch Released

Posted: August 18, 2025

Categories: Security, vulnerability, WINRAR

Tags: fp-6d, fp-6a, fp-5a, fp-1b, fp-1a

Author: Npav Lab

Learn about the critical WinRAR vulnerability (CVE-2025-8088) that allows attackers to hijack extraction processes. Discover the importance of applying the security patch before September 2, 2025.

Microsoft Teams RCE Vulnerability: Critical Flaw Allows Message Manipulation

Posted: August 13, 2025

Categories: vulnerability, Microsoft

Tags: fp-6d, fp-4a, fp-1b

Author: Npav Lab

Microsoft has revealed a critical RCE vulnerability in Teams (CVE-2025-53783) that could let attackers read, write, and delete messages. Learn about the risks and fixes.

New Win-DoS Vulnerabilities Transform Windows Servers into DDoS Botnets

Posted: August 12, 2025

Categories: Botnet, vulnerability, Windows, DDoS

Tags: fp-6d, fp-6a, fp-3b, fp-3a

Author: Npav Lab

Researchers unveil the 'Win-DoS Epidemic' at DEF CON 33, revealing new vulnerabilities in Windows that can turn servers and Domain Controllers into DDoS botnets. Learn more about the risks.

Hackers Exploit Free Trials of EDR Software to Bypass Security Protections

Posted: August 07, 2025

Categories: Security, Hacker

Tags: fp-6d, fp-6c, fp-6b, fp-5a, fp-4b, fp-4a

Author: Npav Lab

Cybercriminals are using free trials of Endpoint Detection and Response (EDR) software to disable existing security measures. Learn about the BYOEDR attack technique and its implications.

D-Link DNR-322L Vulnerability: Download of Code Without Integrity Check

Posted: August 07, 2025

Categories: vulnerability

Tags: fp-6e, fp-6d, fp-6c, fp-6b, fp-6a, fp-5c, fp-5b, fp-5a

Author: Npav Lab

Learn about the critical vulnerability in D-Link DNR-322L that allows code downloads without integrity checks. Discover recommended actions to secure your device.