scworld.com

Outlet metrics

Domain Authority

Ranking

Global

#259663

United States

#192134

Computers Electronics and Technology/Computer Security

#561

Traffic sources

Monthly visitors

Articles

Malicious .NET files conceal RATs in bitmap images

5 days ago | scworld.com | Laura French

Attackers leveraged .NET assemblies with bitmap resources to conceal remote access trojans (RATs) in a recent malspam campaign, Palo Alto Networks’ Unit 42 reported Friday. Unit 42 researchers discovered RATs, including Agent Tesla and Remcos RAT, as well as the XLoader infostealer, hidden in otherwise benign 32-bit .NET files distributed via email and labeled as requests for quotation, purchase orders or other business-related documents.
Google warns of Russian hackers ColdRiver wielding new malware tools

5 days ago | scworld.com | Shaun Nichols

A known Russian cybercrime outfit has armed itself with a new malware suite that allows for the theft of user accounts and credentials, posing a substantial threat to organizations in the West. The group known as "ColdRiver" has been spotted in the wild using a previously unknown piece of data-stealing malware designated as “LostKeys.” According to the Google Threat Intelligence Group (GTIG) the malware is able to covertly swipe credentials for specific services from target machines.
SAP NetWeaver bug exploited since January, allows RCE

5 days ago | scworld.com | Steve Zurier

The 10.0 SAP NetWeaver Visual Composer flaw that’s exploited hundreds of servers is worse than originally thought. Researchers found the bug was not merely a file upload issue, but a full remote code execution (RCE). Juan Pablo “JP” Perez-Etchegoyen, chief technology officer at Onapsis, said researchers also recently discovered that threat actors had been probing for vulnerable SAP system since at least Jan. 20 — almost two months earlier than prior reports.
Attacks surge against antiquated routers, FBI warns

5 days ago | scworld.com | Shaun Nichols

Threat actors are looking to prey on antiquated routers meeting the end of life their life and patch support cycle, according to an alert from the Federal Bureau of Investigations (FBI), which said it has seen a surge in attacks against antiquated network gear that no longer receives regular security updates. The FBI alert said renewed activity against vulnerable routers were observed that have not been updated in some time.
Cyber resilience is the strategy: Why business and security must align now

6 days ago | scworld.com | Paul Wagenseil

Companies that align their cybersecurity and business goals are far more likely to achieve cyber resilience, their ability to withstand a major disruption of their information-technology processes and infrastructure. That's the gist of the newly released 2025 Futures Report from LevelBlue, a joint venture between AT&T and WillJam Ventures.
Cisco patches maximum severity vulnerability in IOS XE Software

6 days ago | scworld.com | Laura French

Cisco patched a maximum severity, CVSS 10.0, vulnerability in its IOS XE Software for wireless LAN controllers (WLCs). The vulnerability, tracked as CVE-2025-20188, could enable a remote, unauthenticated attacker to upload arbitrary files, achieve path traversal and execute arbitrary commands with root privileges on affected devices, according to a Cisco security advisory published Wednesday.
Shaping tomorrow’s cyber defenders: Why the Hacking Games gives me hope for Generations Z, A and beyond

6 days ago | scworld.com | Bill Brenner

One of the best things about RSAC2025 and BSidesSF last week was the focus on younger generations and how to adapt the role of cyber defender – technologically and mentally – to better mesh with how they digest and act on information, especially in the age of AI. From keynotes at those events to the Cybermindz Leadership Summit on alert fatigue (co-hosted by CyberSN and Devo), the human element was front and center -- specifically, the human elements of Generations Z, A and beyond.
Double-extortion tactics used in PowerSchool ransomware attack

6 days ago | scworld.com | Steve Zurier

Online education software provider PowerSchool on May 7 said the threat actors they paid a ransom to following a December 2024 cyberattack have reached out to multiple school district customers in apparent attempts to extort them in exchange for restoring stolen data. The original hack in late December reportedly exposed the sensitive personal data of more than 60 million K-12 students and more than 9 million teachers.
North Korean hackers show telltale signs, researchers say

6 days ago | scworld.com | Shaun Nichols

North Korean threat actors are leaving some telltale signs that could allow network defenders to spot and block malicious activity. Researchers with security firm ReliaQuest found that, in many cases, groups working out of the Hermit Kingdom tend to give away their intentions with a series of common blunders and activity patterns.
Most cyber insurance claims stem from BEC, fraud, report says

1 week ago | scworld.com | Laura French

Business email compromise (BEC) and funds transfer fraud (FTF) made up 60% of cyber insurance claims in 2024, according to the Coalition 2025 Cyber Claims Report published Wednesday.