Center for Cybersecurity & Intelligence Studies

External News

Krebs On Security

• Poor Passwords Tattle on AI Hiring Bot Maker Paradox.ai
  July 18, 2025
  Security researchers recently revealed that the personal information of millions of people who applied for jobs at McDonald's was exposed after they guessed the password […]
• DOGE Denizen Marko Elez Leaked API Key for xAI
  July 15, 2025
  Marko Elez, a 25-year-old employee at Elon Musk's Department of Government Efficiency (DOGE), has been granted access to sensitive databases at the U.S. Social Security […]
• UK Arrests Four in ‘Scattered Spider’ Ransom Group
  July 10, 2025
  Authorities in the United Kingdom this week arrested four alleged members of "Scattered Spider," a prolific data theft and extortion group whose recent victims include […]
• Microsoft Patch Tuesday, July 2025 Edition
  July 9, 2025
  Microsoft today released updates to fix at least 137 security vulnerabilities in its Windows operating systems and supported software. None of the weaknesses addressed this […]
• Big Tech’s Mixed Response to U.S. Treasury Sanctions
  July 3, 2025
  In May 2025, the U.S. government sanctioned a Chinese national for operating a cloud provider linked to the majority of virtual currency investment scam websites […]
• Senator Chides FBI for Weak Advice on Mobile Security
  June 30, 2025
  Agents with the Federal Bureau of Investigation (FBI) briefed Capitol Hill staff recently on hardening the security of their mobile devices, after a contacts list […]

Secure World

• AI-Driven Fraud and Impersonation: The New Face of Financial Crime
  July 18, 2025
  In early 2024, an employee at a Hong Kong firm joined what appeared to be a routine video meeting with […]
• OT Under Siege No More? Fortinet Report Shows Improving Landscape
  July 17, 2025
  For cybersecurity professionals safeguarding the intersection of digital and industrial systems, Fortinet's newly released 2025 State of Operational Technology and […]
• Salt Typhoon Breached U.S. Army National Guard, DHS Memo Reveals
  July 16, 2025
  A newly surfaced U.S. Department of Homeland Security (DHS) memo has confirmed that a Chinese state-linked hacking group known as […]
• AI Appreciation Day Recognizes Positive Contributions
  July 16, 2025
  July 16th marks Artificial Intelligence Appreciation Day, a relatively new observance established in May 2021 by A.I. Heart LLC. The […]
• Goldman Sachs Pilots Its First Autonomous Coder
  July 15, 2025
  Goldman Sachs has officially entered the era of the "hybrid workforce" with the announcement of Devin, an autonomous AI software engineer […]
• The Potential of NATO's Cybersecurity Proposals
  July 14, 2025
  The North Atlantic Treaty Organization's (NATO) approach to cybersecurity is evolving rapidly in response to an increasingly volatile digital landscape. […]

Dark Reading

• 'PoisonSeed' Attacker Skates Around FIDO Keys
  July 18, 2025
  Researchers discovered a novel phishing attack that serves the victim a QR code as part of supposed multifactor authentication (MFA), […]
• Nearly 2,000 MCP Servers Possess No Security Whatsoever
  July 18, 2025
  Authentication in MCP — the backbone of agentic AI — is optional, and nobody's implementing it. Instead, they're allowing any […]
• 3 Ways Security Teams Can Minimize Agentic AI Chaos
  July 18, 2025
  Security often lags behind innovation. The path forward requires striking a balance.
• Firmware Vulnerabilities Continue to Plague Supply Chain
  July 18, 2025
  Four flaws in the basic software for Gigabyte motherboards could allow persistent implants, underscoring problems in the ways firmware is […]
• 4 Chinese APTs Attack Taiwan's Semiconductor Industry
  July 18, 2025
  Chinese threat actors have turned to cyberattacks as a way to undermine and destabilize Taiwan's most important industrial sector.
• Cisco Discloses '10' Flaw in ISE, ISE-PIC — Patch Now
  July 17, 2025
  Cisco just disclosed a critical severity flaw in its ISE and ISE-PIC products, joining two similar bugs disclosed last month.

Resources

• Detroit Mercy Cybersecurity Club – Open to all majors, the Detroit Mercy Cybersecurity Club, sponsored by the Detroit Chapter of ISACA, is an opportunity for students to delve deeper into computers and cybersecurity.
• NICCS – Cybersecurity CISA Resources and Tools, Cybersecurity Training Resources, Education Resources.
• TryHackMe – An interactive cybersecurity training platform offering guided labs and challenges to learn hacking and security concepts in a hands-on environment.
• Hack The Box – A penetration testing platform with virtual labs that challenge users to hack into simulated systems, enhancing offensive security skills and knowledge.
• NCAE Cyber Games – A competition platform for students participating in cyber games, supported by the National Centers of Academic Excellence in Cybersecurity, aimed at developing practical cybersecurity skills through competitive events.
• CyberSeek—To help close the cybersecurity skills gap, CyberSeek provides detailed, actionable data on supply and demand in the cybersecurity job market.
• CyberMission.tech – A Department of Defense (DoD) cyber initiative with high-tech, hands-on opportunities for military personnel, Veterans, and the public.
• CISA Cybersecurity Resources: Telework guidance and best practices, assessments, prevention, and response resources, cybersecurity awareness and best practices resources, misinformation, disinformation, and malinformation resources, mitigating cyber risks to the nation’s critical infrastructure.

Security Resources

• Institutional Security Resources and Awareness
• Information Technology Services

Goals & Unique Features of the Center

Following the goals for the National Initiative for Cybersecurity Education, the Center provides education, advanced security research and service to:

1. To advance the cybersecurity capabilities of the workforce within the Detroit Mercy service region as well as nationally.
2. To increase the number of highly educated, digitally literate citizens within underrepresented people and veterans and to produce professional specialists in areas of critical need.
3. To generate educational, outreach and research activities that will ensure the protection of the critical infrastructure of the United States as a whole.

Internal News