NPAV Logo

Shopping Cart My Cart 0
₹0.00
Currency
INR
Currency
INR

phishing attack

  1. Critical Veeam Vulnerability Exploited to Spread Akira and Fog Ransomware

    Critical Veeam Vulnerability Exploited to Spread Akira and Fog Ransomware

    Posted: October 15, 2024
    Categories: Ransomware, vulnerability
    Tags: vpn exploits, phishing attack
    Author: Npav Lab
    Views: 14
    Threat actors are exploiting a now-patched vulnerability in Veeam Backup & Replication (CVE-2024-40711) to deploy Akira and Fog ransomware. Using compromised VPN credentials, attackers create local accounts and spread ransomware, targeting enterprise backup systems. The flaw, rated 9.8 on the CVSS scale, enables remote code execution and was patched in September 2024.
    Read more
  2. GitHub, Telegram Bots, and ASCII QR Codes Abused in New Wave of Phishing Attacks

    GitHub, Telegram Bots, and ASCII QR Codes Abused in New Wave of Phishing Attacks

    Posted: October 14, 2024
    Categories: Malware Alerts, Phishing
    Tags: phishing attack, financial security
    Author: Npav Lab
    Views: 13
    A new phishing campaign targeting the insurance and finance sectors uses GitHub, Telegram bots, and ASCII QR codes to deliver malware and evade security measures. The attack leverages GitHub links and trusted repositories to distribute Remcos RAT, with the payload delivered via phishing emails. Additional techniques such as blob URLs and QR code-based phishing add complexity to detection, while Telegram bots facilitate scams on platforms like Booking.com and Airbnb.
    Read more
Categories
Recent Posts
Critical Veeam Vulnerability Exploited to Spread Akira and Fog Ransomware
Critical Veeam Vulnerability Exploited to Spread Akira and Fog Ransomware
October 15, 2024
GitHub, Telegram Bots, and ASCII QR Codes Abused in New Wave of Phishing Attacks
GitHub, Telegram Bots, and ASCII QR Codes Abused in New Wave of Phishing Attacks
October 14, 2024
Casio Confirms Data Breach in Ransomware Attack: Sensitive Information Stolen
Casio Confirms Data Breach in Ransomware Attack: Sensitive Information Stolen
October 14, 2024
Firefox Zero-Day Vulnerability Under Active Exploitation: Update Your Browser Now
Firefox Zero-Day Vulnerability Under Active Exploitation: Update Your Browser Now
October 11, 2024
Fidelity Investments Data Breach Exposes Personal Information of Over 77,000 Customers
Fidelity Investments Data Breach Exposes Personal Information of Over 77,000 Customers
October 11, 2024
Archive
October 2024
September 2024
August 2024
July 2024
June 2024
May 2024
April 2024
March 2024
February 2024
January 2024
December 2023
November 2023
October 2023
September 2023
August 2023
July 2023
June 2023
May 2023
April 2023
March 2023
February 2023
January 2023
December 2022
November 2022
October 2022
September 2022
August 2022
July 2022
June 2022
May 2022
April 2022
February 2022
January 2022
December 2021
November 2021
October 2021
September 2021
August 2021
July 2021
June 2021
May 2021
April 2021
March 2021
February 2021
January 2021
December 2020
November 2020
October 2020
September 2020
August 2020
July 2020
June 2020
May 2020
April 2020
March 2020
February 2020
January 2020
December 2019
November 2019
October 2019
September 2019
August 2019
July 2019
June 2019
May 2019
April 2019
March 2019
February 2019
January 2019
December 2018
August 2018
July 2018
June 2018
May 2018
April 2018
March 2018
January 2018
December 2017
November 2017
October 2017
August 2017
July 2017
May 2017
January 2017
December 2016
November 2016
October 2016
September 2016
August 2016
July 2016
June 2016
May 2016
April 2016
March 2016
February 2016
January 2016
December 2015
November 2015
October 2015
September 2015
August 2015
July 2015
June 2015
May 2015
April 2015
March 2015
February 2015
January 2015
December 2014
November 2014
October 2014
September 2014
August 2014
July 2014
June 2014
May 2014
April 2014
March 2014
January 2014
Tags
cyber attack phishing data breach ransomware ransomeware android malware cyber security data stealing ddos india financial security twitter phishing email microsoft cert-in cybercrime malware pune vulnerability cyber crime independence day occasion hacking telegram phishing scam android apps financial fraud cyber attack in india data security scam clop gang pakistani hackers clop gang extorting google play store play store fedex user data leak microsoft team android pakistan-backed hacker whatsapp clop malicious apps email phishing december cyber attacks lockbit cert cryptojacking ddos attack winrar
RSS Feed RSS Feed
Back to Top