NPAV Logo

Shopping Cart My Cart 0
₹0.00
Currency
INR
Currency
INR

zero-day exploit

  1. MiniPlasma Windows Zero-Day Exploit Enables SYSTEM Privilege Escalation on Fully Patched Systems

    MiniPlasma Windows Zero-Day Exploit Enables SYSTEM Privilege Escalation on Fully Patched Systems

    Posted: May 18, 2026
    Categories: Windows
    Tags: zero-day exploit, windows, patch
    Author: Npav Lab
    Views: 58
    A newly disclosed Windows zero-day vulnerability named MiniPlasma affects the Cloud Files Mini Filter Driver (cldflt.sys), allowing attackers to gain SYSTEM privileges on fully patched Windows systems. The flaw is reportedly still unpatched despite prior fixes and can be reliably exploited under certain conditions.
    Read more
  2. PAN-OS Captive Portal Zero-Day (CVE-2026-0300) Enables Unauthenticated Root RCE on Firewalls

    PAN-OS Captive Portal Zero-Day (CVE-2026-0300) Enables Unauthenticated Root RCE on Firewalls

    Posted: May 07, 2026
    Categories: Data Breach, firewall
    Tags: zero-day exploit, vulnerability, remote code execution, firewalls
    Author: Npav Lab
    Views: 41
    A critical PAN-OS vulnerability (CVE-2026-0300) in the User-ID Captive Portal allows unauthenticated remote code execution with root privileges. Limited exploitation has been linked to state-sponsored activity involving log tampering, Active Directory enumeration, and deployment of tunneling tools like EarthWorm and ReverseSocks5.
    Read more
  3. What is Claude Mythos and Why It’s a Wake-Up Call for Businesses

    What is Claude Mythos and Why It’s a Wake-Up Call for Businesses

    Posted: May 06, 2026
    Categories: Data Breach, Bug, AI
    Tags: zero-day exploit, mythos, cyber security, claude ai, ai
    Author: Npav Lab
    Views: 76
    Claude Mythos AI is redefining cyber threats by discovering zero-day vulnerabilities and generating exploits faster than ever. Learn how businesses can stay protected.
    Read more
  4. RedSun Zero-Day Exploits Windows Defender to Gain SYSTEM-Level Access

    RedSun Zero-Day Exploits Windows Defender to Gain SYSTEM-Level Access

    Posted: April 24, 2026
    Categories: Security, Hacking, Windows
    Tags: zero-day exploit, windows defender, windows, security, exploits
    Author: Npav Lab
    Views: 79
    RedSun zero-day exploits Windows Defender to gain SYSTEM access. Learn how NPAV EPS protects against zero-day and privilege escalation attacks.
    Read more
  5. Oracle Gen 1 Servers Breached - Millions of Records Compromised by Cyberattack

    Oracle Gen 1 Servers Breached - Millions of Records Compromised by Cyberattack

    Posted: April 04, 2025
    Categories: Security, Data Breach
    Tags: zero-day exploit, cyber attack
    Author: Npav Lab
    Views: 127
    Oracle has confirmed a major data breach targeting its older Gen 1 servers, exposing sensitive authentication data, usernames, and hashed passwords. The attacker gained access using an old Java exploit and demanded a $20 million ransom.
    Read more
  6. FortiGate Firewalls Face Zero-Day Vulnerability Attacks

    FortiGate Firewalls Face Zero-Day Vulnerability Attacks

    Posted: January 15, 2025
    Categories: vulnerability, firewall
    Tags: zero-day exploit, firewall protection
    Author: Npav Lab
    Views: 192
    Fortinet FortiGate firewall devices are under attack due to a zero-day vulnerability. Hackers are exploiting exposed management interfaces on public networks, gaining unauthorized access, and compromising firewall configurations. Organizations must act quickly to secure their systems and prevent further damage.
    Read more
Categories
Recent Posts
WhatsApp displays a security warning before users start chats with unknown phone numbers to help prevent scams.
WhatsApp Introduces Warning Before Chats With Unknown Phone Numbers
June 26, 2026
Google takes legal action against a cybercrime network linked to thousands of phishing websites and malicious URLs.
Google Lawsuit Targets Phishing Network Linked to 9,000 Fake Websites
June 17, 2026
Cyber fraud case in Haldwani where money was stolen from bank accounts without OTP sharing or phishing link clicks.
Money Vanishes Without OTP in Haldwani Cyber Fraud Case
June 16, 2026
Illustration of a healthcare ransomware attack targeting hospital servers and exposing sensitive patient records.
Ernakulam Hospital Cyberattack: 800GB Patient Data Allegedly Stolen in Major Ransomware Breach
June 12, 2026
Net Protector Endpoint Security – EDR wins the AV-TEST Top Product Award 2026 for advanced ransomware protection, enterprise endpoint security, and EDR capabilities.
Net Protector Endpoint Security – EDR Wins AV-TEST Top Product Award 2026
June 11, 2026
Back to Top