Center for Cybersecurity & Intelligence Studies

External News

Krebs On Security

• Self-Replicating Worm Hits 180+ Software Packages
  September 16, 2025
  At least 187 code packages made available through the JavaScript repository NPM have been infected with a self-replicating worm that steals credentials from developers and […]
• Bulletproof Host Stark Industries Evades EU Sanctions
  September 11, 2025
  In May 2025, the European Union levied financial sanctions on the owners of Stark Industries Solutions Ltd., a bulletproof hosting provider that materialized two weeks before […]
• Microsoft Patch Tuesday, September 2025 Edition
  September 9, 2025
  Microsoft Corp. today issued security updates to fix more than 80 vulnerabilities in its Windows operating systems and software. There are no known "zero-day" or […]
• 18 Popular Code Packages Hacked, Rigged to Steal Crypto
  September 8, 2025
  At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, […]
• GOP Cries Censorship Over Spam Filters That Work
  September 6, 2025
  The chairman of the Federal Trade Commission (FTC) last week sent a letter to Google's CEO demanding to know why Gmail was blocking messages from […]
• The Ongoing Fallout from a Breach at AI Chatbot Maker Salesloft
  September 1, 2025
  The recent mass-theft of authentication tokens from Salesloft, whose AI chatbot is used by a broad swath of corporate America to convert customer interaction into […]

Secure World

• The Due Diligence Imperative: Homes, Cars, and Software
  September 16, 2025
  Would you buy a house without an inspection? Would you buy a car without a Carfax report? Then why buy […]
• FBI FLASH Alert: Salesforce Under Siege
  September 15, 2025
  On September 12, 2025, the FBI released FLASH-20250912-001, warning of a surge in data theft and extortion campaigns targeting organizations' Salesforce […]
• Building Trust in Smart Cities with Secure Transit Payments
  September 14, 2025
  From New York City to London, smart cities are cropping up around the globe. In these urban hubs, technology is […]
• China-Linked APT41 Targets U.S. Trade Policy Stakeholders in Cyber Espionage
  September 12, 2025
  The U.S. House Select Committee on the Chinese Communist Party (CCP) has issued a warning about an ongoing cyber espionage campaign […]
• When Ransomware Meets AI: Study Shows Alarming Trends
  September 11, 2025
  A joint study from Cybersecurity at MIT Sloan (CAMS) and Safe Security has looked at 2,800 ransomware incidents and found […]
• Salty2FA Exposes the Next Evolution of Phishing Operations
  September 10, 2025
  The Ontinue Ion Cyber Defense Center has published new research exposing a sophisticated phishing campaign leveraging the Salty2FA framework. This […]

Dark Reading

• North Korean Group Targets South With Military ID Deepfakes
  September 17, 2025
  The North Korea-linked group Kimsuky used ChatGPT to create deepfakes of military ID documents in an attempt to compromise South […]
• Ray Security Takes an Active Data Security Approach
  September 16, 2025
  A data security platform based on action is what the industry needs right now to protect enterprise data.
• Critical Bugs in Chaos Mesh Enable Cluster Takeover
  September 16, 2025
  "Chaotic Deputy" is a set of four vulnerabilities in the chaos engineering platform that many organizations use to test the […]
• Self-Replicating 'Shai-hulud' Worm Targets NPM Packages
  September 16, 2025
  The newly emerged worm has spread across hundreds of open source software packages, stealing credentials and infecting other components without […]
• 'Vane Viper' Threat Group Tied to PropellerAds, Commercial Entities
  September 16, 2025
  Researchers say the commercial adtech platform and several other companies form the infrastructure of a massive cybercrime operation.
• Innovative FileFix Phishing Attack Proves Plenty Potent
  September 16, 2025
  Highly deceptive FileFix uses code obfuscation and steganography and has been translated into at least 16 languages to power a […]

Resources

• Detroit Mercy Cybersecurity Club – Open to all majors, the Detroit Mercy Cybersecurity Club, sponsored by the Detroit Chapter of ISACA, is an opportunity for students to delve deeper into computers and cybersecurity.
• NICCS – Cybersecurity CISA Resources and Tools, Cybersecurity Training Resources, Education Resources.
• TryHackMe – An interactive cybersecurity training platform offering guided labs and challenges to learn hacking and security concepts in a hands-on environment.
• Hack The Box – A penetration testing platform with virtual labs that challenge users to hack into simulated systems, enhancing offensive security skills and knowledge.
• NCAE Cyber Games – A competition platform for students participating in cyber games, supported by the National Centers of Academic Excellence in Cybersecurity, aimed at developing practical cybersecurity skills through competitive events.
• CyberSeek—To help close the cybersecurity skills gap, CyberSeek provides detailed, actionable data on supply and demand in the cybersecurity job market.
• CyberMission.tech – A Department of Defense (DoD) cyber initiative with high-tech, hands-on opportunities for military personnel, Veterans, and the public.
• CISA Cybersecurity Resources: Telework guidance and best practices, assessments, prevention, and response resources, cybersecurity awareness and best practices resources, misinformation, disinformation, and malinformation resources, mitigating cyber risks to the nation’s critical infrastructure.

Security Resources

• Institutional Security Resources and Awareness
• Information Technology Services

Goals & Unique Features of the Center

Following the goals for the National Initiative for Cybersecurity Education, the Center provides education, advanced security research and service to:

1. To advance the cybersecurity capabilities of the workforce within the Detroit Mercy service region as well as nationally.
2. To increase the number of highly educated, digitally literate citizens within underrepresented people and veterans and to produce professional specialists in areas of critical need.
3. To generate educational, outreach and research activities that will ensure the protection of the critical infrastructure of the United States as a whole.

Internal News