Center for Cybersecurity & Intelligence Studies

External News

Krebs On Security

• Breachforums Boss to Pay $700k in Healthcare Breach
  May 15, 2025
  In what experts are calling a novel legal outcome, the 22-year-old former administrator of the cybercrime community Breachforums will forfeit nearly $700,000 to settle a […]
• Patch Tuesday, May 2025 Edition
  May 14, 2025
  Microsoft on Tuesday released software updates to fix at least 70 vulnerabilities in Windows and related products, including five zero-day flaws that are already seeing […]
• Pakistani Firm Shipped Fentanyl Analogs, Scams to US
  May 7, 2025
  A Texas firm recently charged with conspiring to distribute synthetic opioids in the United States is at the center of a vast network of companies […]
• xAI Dev Leaks API Key for Private SpaceX, Tesla LLMs
  May 2, 2025
  A employee at Elon Musk's artificial intelligence company xAI leaked a private key on GitHub that for the past two months could have allowed anyone to […]
• Alleged ‘Scattered Spider’ Member Extradited to U.S.
  April 30, 2025
  A 23-year-old Scottish man thought to be a member of the prolific Scattered Spider cybercrime group was extradited last week from Spain to the United […]
• DOGE Worker’s Code Supports NLRB Whistleblower
  April 23, 2025
  A whistleblower at the National Labor Relations Board (NLRB) alleged last week that denizens of Elon Musk's Department of Government Efficiency (DOGE) siphoned gigabytes of […]

Secure World

• Scattered Spider Strikes Again: U.K. Attacks Spark U.S. Retailer Alarm
  May 16, 2025
  The threat actor group known as Scattered Spider (also tracked as UNC3944) has intensified its cyber offensives—this time hitting targets […]
• Steelmaker Nucor Faces Breach, Temporarily Halts Production
  May 15, 2025
  On May 14, 2025, Nucor Corporation, the largest steel producer in the United States, disclosed a cybersecurity incident involving unauthorized […]
• Cybercrime Soars: FBI's 2024 Report Reveals $16.6 Billion in Losses
  May 14, 2025
  The FBI's Internet Crime Complaint Center (IC3) has released its 2024 Internet Crime Report, marking a record-breaking year in cybercrime. […]
• Meta Scores $168M Legal Victory Over NSO Group for Spyware Abuse
  May 13, 2025
  In a landmark ruling that reverberates across the cybersecurity and tech policy landscape, Meta has won a $167.7 million judgment […]
• From Compliance to Confidence: How AI Is Reshaping Third-Party Risk
  May 13, 2025
  As geopolitical instability, supply chain disruption, and cyber threats continue to escalate, third-party risk management (TPRM) is evolving from a […]
• California Privacy Agency Enforcement, CCPA Rulemaking, and CIPA Reform
  May 12, 2025
  Co-authors: Matthew T. Peters, Ali Bloom, and Chirag H. Patel

Dark Reading

• [Virtual Event] Strategic Security for the Modern Enterprise
  June 26, 2025
• Coinbase Extorted, Offers $20M for Info on Its Hackers
  May 16, 2025
  Coinbase is going Liam Neeson on its attackers, potentially setting a new precedent for incident response in the wake of […]
• Australian Human Rights Commission Leaks Docs in Data Breach
  May 16, 2025
  An internal error led to public disclosure of reams of sensitive data that could be co-opted for follow-on cyberattacks.
• Dynamic DNS Emerges as Go-to Cyberattack Facilitator
  May 16, 2025
  Scattered Spider and other phishers and hacking groups are using rentable subdomains from dynamic DNS providers to obfuscate their activity […]
• Attacker Specialization Puts Threat Modeling on Defensive
  May 16, 2025
  Specialization among threat groups poses challenges for defenders, who now must distinguish between different actors responsible for different facets of […]
• How to Develop and Communicate Metrics for CSIRPs
  May 16, 2025
  A well-documented cybersecurity incident response program (CSIRP) provides the transparency needed for informed decision-making, protecting the organization in a constantly […]

Resources

• Detroit Mercy Cybersecurity Club – Open to all majors, the Detroit Mercy Cybersecurity Club, sponsored by the Detroit Chapter of ISACA, is an opportunity for students to delve deeper into computers and cybersecurity.
• NICCS – Cybersecurity CISA Resources and Tools, Cybersecurity Training Resources, Education Resources.
• TryHackMe – An interactive cybersecurity training platform offering guided labs and challenges to learn hacking and security concepts in a hands-on environment.
• Hack The Box – A penetration testing platform with virtual labs that challenge users to hack into simulated systems, enhancing offensive security skills and knowledge.
• NCAE Cyber Games – A competition platform for students participating in cyber games, supported by the National Centers of Academic Excellence in Cybersecurity, aimed at developing practical cybersecurity skills through competitive events.
• CyberSeek—To help close the cybersecurity skills gap, CyberSeek provides detailed, actionable data on supply and demand in the cybersecurity job market.
• CyberMission.tech – A Department of Defense (DoD) cyber initiative with high-tech, hands-on opportunities for military personnel, Veterans, and the public.
• CISA Cybersecurity Resources: Telework guidance and best practices, assessments, prevention, and response resources, cybersecurity awareness and best practices resources, misinformation, disinformation, and malinformation resources, mitigating cyber risks to the nation’s critical infrastructure.

Security Resources

• Institutional Security Resources and Awareness
• Information Technology Services

Goals & Unique Features of the Center

Following the goals for the National Initiative for Cybersecurity Education, the Center provides education, advanced security research and service to:

1. To advance the cybersecurity capabilities of the workforce within the Detroit Mercy service region as well as nationally.
2. To increase the number of highly educated, digitally literate citizens within underrepresented people and veterans and to produce professional specialists in areas of critical need.
3. To generate educational, outreach and research activities that will ensure the protection of the critical infrastructure of the United States as a whole.

Internal News