Center for Cybersecurity & Intelligence Studies

External News

Krebs On Security

• Self-Replicating Worm Hits 180+ Software Packages
  September 16, 2025
  At least 187 code packages made available through the JavaScript repository NPM have been infected with a self-replicating worm that steals credentials from developers and […]
• Bulletproof Host Stark Industries Evades EU Sanctions
  September 11, 2025
  In May 2025, the European Union levied financial sanctions on the owners of Stark Industries Solutions Ltd., a bulletproof hosting provider that materialized two weeks before […]
• Microsoft Patch Tuesday, September 2025 Edition
  September 9, 2025
  Microsoft Corp. today issued security updates to fix more than 80 vulnerabilities in its Windows operating systems and software. There are no known "zero-day" or […]
• 18 Popular Code Packages Hacked, Rigged to Steal Crypto
  September 8, 2025
  At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, […]
• GOP Cries Censorship Over Spam Filters That Work
  September 6, 2025
  The chairman of the Federal Trade Commission (FTC) last week sent a letter to Google's CEO demanding to know why Gmail was blocking messages from […]
• The Ongoing Fallout from a Breach at AI Chatbot Maker Salesloft
  September 1, 2025
  The recent mass-theft of authentication tokens from Salesloft, whose AI chatbot is used by a broad swath of corporate America to convert customer interaction into […]

Secure World

• Governing Non-Human Identities: New Certification Offers Needed Help
  September 17, 2025
  Machines don't sleep. APIs don't negotiate. Scripted agents don't take coffee breaks. Non-human identities (NHIs) are everywhere in modern organizations—from […]
• The Due Diligence Imperative: Homes, Cars, and Software
  September 16, 2025
  Would you buy a house without an inspection? Would you buy a car without a Carfax report? Then why buy […]
• FBI FLASH Alert: Salesforce Under Siege
  September 15, 2025
  On September 12, 2025, the FBI released FLASH-20250912-001, warning of a surge in data theft and extortion campaigns targeting organizations' Salesforce […]
• Building Trust in Smart Cities with Secure Transit Payments
  September 14, 2025
  From New York City to London, smart cities are cropping up around the globe. In these urban hubs, technology is […]
• China-Linked APT41 Targets U.S. Trade Policy Stakeholders in Cyber Espionage
  September 12, 2025
  The U.S. House Select Committee on the Chinese Communist Party (CCP) has issued a warning about an ongoing cyber espionage campaign […]
• When Ransomware Meets AI: Study Shows Alarming Trends
  September 11, 2025
  A joint study from Cybersecurity at MIT Sloan (CAMS) and Safe Security has looked at 2,800 ransomware incidents and found […]

Dark Reading

• Microsoft Disrupts 'RaccoonO365' Phishing Service
  September 17, 2025
  Phishing-as-a-service (PhaaS) kits have become an increasingly popular way for lower-skill individuals who want to get into cybercrime.
• 'Scattered Lapsus$ Hunters,' Others Announce End of Hacking Spree
  September 17, 2025
  Though the groups have shared their decision to go dark, threat researchers say there are signs that it's business as […]
• AI-Powered Sign-up Fraud Is Scaling Fast
  September 17, 2025
  The AI era means attackers are smarter, faster, and hitting you where you least expect it — your sign-up funnel.
• Raven Stealer Scavenges Chromium Data Via Telegram
  September 17, 2025
  The new lightweight stealer, distributed via underground forums and cracked software, demonstrates an important evolution in the stealth of commodity […]
• North Korean Group Targets South With Military ID Deepfakes
  September 17, 2025
  The North Korea-linked group Kimsuky used ChatGPT to create deepfakes of military ID documents in an attempt to compromise South […]
• Ray Security Takes an Active Data Security Approach
  September 16, 2025
  The data security platform comes with a predictive capability that separates it from other offerings aimed at protecting enterprise data, […]

Resources

• Detroit Mercy Cybersecurity Club – Open to all majors, the Detroit Mercy Cybersecurity Club, sponsored by the Detroit Chapter of ISACA, is an opportunity for students to delve deeper into computers and cybersecurity.
• NICCS – Cybersecurity CISA Resources and Tools, Cybersecurity Training Resources, Education Resources.
• TryHackMe – An interactive cybersecurity training platform offering guided labs and challenges to learn hacking and security concepts in a hands-on environment.
• Hack The Box – A penetration testing platform with virtual labs that challenge users to hack into simulated systems, enhancing offensive security skills and knowledge.
• NCAE Cyber Games – A competition platform for students participating in cyber games, supported by the National Centers of Academic Excellence in Cybersecurity, aimed at developing practical cybersecurity skills through competitive events.
• CyberSeek—To help close the cybersecurity skills gap, CyberSeek provides detailed, actionable data on supply and demand in the cybersecurity job market.
• CyberMission.tech – A Department of Defense (DoD) cyber initiative with high-tech, hands-on opportunities for military personnel, Veterans, and the public.
• CISA Cybersecurity Resources: Telework guidance and best practices, assessments, prevention, and response resources, cybersecurity awareness and best practices resources, misinformation, disinformation, and malinformation resources, mitigating cyber risks to the nation’s critical infrastructure.

Security Resources

• Institutional Security Resources and Awareness
• Information Technology Services

Goals & Unique Features of the Center

Following the goals for the National Initiative for Cybersecurity Education, the Center provides education, advanced security research and service to:

1. To advance the cybersecurity capabilities of the workforce within the Detroit Mercy service region as well as nationally.
2. To increase the number of highly educated, digitally literate citizens within underrepresented people and veterans and to produce professional specialists in areas of critical need.
3. To generate educational, outreach and research activities that will ensure the protection of the critical infrastructure of the United States as a whole.

Internal News