Center for Cybersecurity & Intelligence Studies

External News

Krebs On Security

• Cloudflare Scrubs Aisuru Botnet from Top Domains List
  November 6, 2025
  For the past week, domains associated with the massive Aisuru botnet have repeatedly usurped Amazon, Apple, Google and Microsoft in Cloudflare's public ranking of the […]
• Alleged Jabber Zeus Coder ‘MrICQ’ in U.S. Custody
  November 2, 2025
  A Ukrainian man indicted in 2012 for conspiring with a prolific hacking group to steal tens of millions of dollars from U.S. businesses was arrested […]
• Aisuru Botnet Shifts from DDoS to Residential Proxies
  October 29, 2025
  Aisuru, the botnet responsible for a series of record-smashing distributed denial-of-service (DDoS) attacks this year, recently was overhauled to support a more low-key, lucrative and […]
• Canada Fines Cybercrime Friendly Cryptomus $176M
  October 22, 2025
  Financial regulators in Canada this week levied $176 million in fines against Cryptomus, a digital payments platform that supports dozens of Russian cryptocurrency exchanges and […]
• Email Bombs Exploit Lax Authentication in Zendesk
  October 17, 2025
  Cybercriminals are abusing a widespread lack of authentication in the customer service platform Zendesk to flood targeted email inboxes with menacing messages that come from […]
• Patch Tuesday, October 2025 ‘End of 10’ Edition
  October 14, 2025
  Microsoft today released software updates to plug a whopping 172 security holes in its Windows operating systems, including at least three vulnerabilities that are already […]

Secure World

• The Financial Sector's Data Crisis: 82% Suffer Recent Breaches
  November 5, 2025
  The financial services sector, managing the world's most sensitive data, is facing an intensifying and often self-inflicted security crisis. The […]
• The Ultimate Betrayal: When Cyber Negotiators Became the Attackers
  November 4, 2025
  The cybersecurity community is reeling from a disturbing indictment that underscores a frightening new dimension of insider risk and supply […]
• The CISO's Playbook: From Reactive to Predictive
  November 4, 2025
  For years, CISOs have been responding to incidents, pursuing alarms, and building defenses against assaults. The AI revolution, on the […]
• Hacker Claims 1.2 Million Records in University of Pennsylvania Breach
  November 3, 2025
  A hacker claims to have stolen data from the University of Pennsylvania containing information on roughly 1.2 million donors, alumni, […]
• Persistent XSS Vulnerabilities and Modern Mitigation Best Practices
  November 3, 2025
  Cross-Site Scripting (XSS) remains one of the most persistent and damaging web application vulnerabilities. XSS happens when an application fails […]
• Tap-and-Steal: NFC Relay Malware Closes the Mobile Distance Gap
  October 31, 2025
  The mobile security landscape is often defined by invisible threats—phishing links, data exfiltration, and root exploits. However, the cybersecurity community […]

Dark Reading

• APT 'Bronze Butler' Exploits Zero-Day to Root Japan Orgs
  November 6, 2025
  A critical security issue in a popular endpoint manager (CVE-2025-61932) allowed Chinese state-sponsored attackers to backdoor Japanese businesses.
• Nikkei Suffers Breach Via Slack Compromise
  November 5, 2025
  The Japanese media giant said thousands of employee and business partners were impacted by an attack that compromised Slack account […]
• Operational Technology Security Poses Inherent Risks for Manufacturers
  November 5, 2025
  Despite increased awareness, manufacturers continue to face an onslaught of attacks.
• Critical Site Takeover Flaw Affects 400K WordPress Sites
  November 5, 2025
  Attackers are already targeting a vulnerability in the Post SMTP plug-in that allows them to fully compromise an account and […]
• Closing the AI Execution Gap in Cybersecurity — A CISO Framework
  November 5, 2025
  CISOs must navigate five critical dimensions of AI in cybersecurity: augmenting security with AI, automating security with AI, protecting AI […]
• Risk 'Comparable' to SolarWinds Incident Lurks in Popular Software Update Tool
  November 5, 2025
  Some of the world's biggest technology companies use a program liable to introduce malware into their software. The potential consequences […]

Resources

• Detroit Mercy Cybersecurity Club – Open to all majors, the Detroit Mercy Cybersecurity Club, sponsored by the Detroit Chapter of ISACA, is an opportunity for students to delve deeper into computers and cybersecurity.
• NICCS – Cybersecurity CISA Resources and Tools, Cybersecurity Training Resources, Education Resources.
• TryHackMe – An interactive cybersecurity training platform offering guided labs and challenges to learn hacking and security concepts in a hands-on environment.
• Hack The Box – A penetration testing platform with virtual labs that challenge users to hack into simulated systems, enhancing offensive security skills and knowledge.
• NCAE Cyber Games – A competition platform for students participating in cyber games, supported by the National Centers of Academic Excellence in Cybersecurity, aimed at developing practical cybersecurity skills through competitive events.
• CyberSeek—To help close the cybersecurity skills gap, CyberSeek provides detailed, actionable data on supply and demand in the cybersecurity job market.
• CyberMission.tech – A Department of Defense (DoD) cyber initiative with high-tech, hands-on opportunities for military personnel, Veterans, and the public.
• CISA Cybersecurity Resources: Telework guidance and best practices, assessments, prevention, and response resources, cybersecurity awareness and best practices resources, misinformation, disinformation, and malinformation resources, mitigating cyber risks to the nation’s critical infrastructure.

Security Resources

• Institutional Security Resources and Awareness
• Information Technology Services

Goals & Unique Features of the Center

Following the goals for the National Initiative for Cybersecurity Education, the Center provides education, advanced security research and service to:

1. To advance the cybersecurity capabilities of the workforce within the Detroit Mercy service region as well as nationally.
2. To increase the number of highly educated, digitally literate citizens within underrepresented people and veterans and to produce professional specialists in areas of critical need.
3. To generate educational, outreach and research activities that will ensure the protection of the critical infrastructure of the United States as a whole.

Internal News