Cool Audit

Coolaudit

Rockwell Automation Warns Admin to Disconnect Devices From Internet

Incognito Dark Web Market Admin Arrested for Selling Illegal Goods

Rockwell Automation has sent an urgent message to all of its customers because of rising geopolitical issues and hostile cyber activity worldwide. The company is asking that any devices currently connected to the public internet be checked out immediately and shut down if they aren’t meant to do so. This proactive step is meant to lower the […]

CasperSecurity Stealer Attacking Windows Machine to Steal RDP Credentials

CasperSecurity Stealer Attacking Windows Machine to Remote Desktop Credentials

A new piece of malware called CasperSecurity Stealer is a major threat to Windows computers. This complex malware is made to steal Remote Desktop Protocol (RDP) credentials, which is very dangerous for individuals and businesses.   A New Breed of Malware CasperSecurity Stealer is a new type of malware that targets RDP passwords in particular. RDP is […]

Hackers Exploited GitHub and FileZilla to Deliver Banking Malware

Hackers Exploited GitHub and FileZilla to Deliver Banking Malware

The Insikt Group at Recorded Future has found a sophisticated cybercrime operation run by Russian-speaking threat actors from the Commonwealth of Independent States (CIS). This group of hackers has used safe websites like GitHub and FileZilla to spread banking malware, which is very dangerous for both personal and business security.   GitCaught: Exposing the Misuse of […]

CISA Reveals Guidance For Implementation of Encrypted DNS Protocols

CISA Reveals Guidance For Implementation of Encrypted DNS Protocols

“Encrypted DNS Implementation Guidance,” a detailed document from the Cybersecurity and Infrastructure Security Agency (CISA), tells government agencies how to improve their cybersecurity by using encrypted Domain Name System (DNS) protocols. This advice is in line with Memorandum M-22-09 from the Office of Management and Budget (OMB), which lays out a “zero trust” cybersecurity plan […]

Earth Hundun Hacker Group Employs Advanced Tactics to Evade Detection

Earth Hundun Hacker Group Employs Advanced Tactics to Evade Detection

Earth Hundun, a notable Asia-Pacific malware organization, uses Waterbear and Deuterbear. We first encountered Deuterbear in Earth Hundun’s arsenal in October 2022, signaling its implementation. This report describes the ultimate Remote Access Trojan (RAT) we recovered from a C&C server from an Earth Hundun campaign in 2024. We examined the Waterbear downloader’s network actions at the beginning. […]

WaveStealer Malware Delivered Via Telegram & Discord Messaging Platforms

WaveStealer Malware Delivered Via Telegram & Discord Messaging Platforms

Cybersecurity experts have identified a new malware, dubbed WaveStealer, that is being actively distributed through popular messaging platforms Telegram and Discord. This sophisticated malware masquerading as video game installers poses a significant threat to users by targeting their sensitive data.   How WaveStealer Operates WaveStealer is not just another malware but an infostealer designed to extract sensitive […]

Royal Tiger Group With Spoofed Phone Numbers Stealing Credit Card Data: FCC

Royal Tiger Group With Spoofed Phone Numbers Stealing Credit card Data FCC

According to the Federal Communications Commission (FCC), the Royal Tiger Group and its employees are a Consumer Communications Information Services Threat (C-CIST). This is a crucial step for the FCC in its ongoing work to protect U.S. customers from sophisticated scams that affect the telecommunications network.   FCC’s New Classification to Combat Robocall Frauds Under its new […]

Google Cloud Accidentally Deletes $125 Billion Pension Fund’s Online Account

Google Cloud accidentally Deletes 125 billion Pension Fund’s Online Account

A major mistake in setup caused Google Cloud and UniSuper to delete the financial service provider’s private cloud account. This event has caused a lot of worry about the security and dependability of cloud services, especially for big financial companies. The outage started in the blue, and UniSuper’s 620,000 members had no idea what was going on […]

Alert! Google Chrome Zero-day Exploited in the Wild

Google Chrome Zero-day

Google has released an urgent update for its popular Chrome web browser. The update fixes a critical zero-day vulnerability that malicious attackers are actively exploiting. The vulnerability is considered to be high-risk, and if left unpatched, attackers can gain unauthorized access to sensitive information on affected systems. There is a vulnerability in Chrome’s Visuals component […]

FBI Warns of Phishing Attack Targeting Retail Corporate Offices

FBI Warns of Phishing Attack Targeting Retail Corporate Offices

The Federal Bureau of Investigation (FBI) has warned about a sophisticated phishing and smishing (SMS phishing) campaign orchestrated by a cybercriminal group known as STORM-0539, or Atlas Lion. This group has been actively targeting the gift card departments of major U.S. retail corporations, creating fraudulent gift cards that have led to significant financial losses.   Tactics and […]