Center for Cybersecurity & Intelligence Studies

External News

Krebs On Security

• U.S. Sanctions Cloud Provider ‘Funnull’ as Top Source of ‘Pig Butchering’ Scams
  May 30, 2025
  The U.S. government today imposed economic sanctions on Funnull Technology Inc., a Philippines-based company that provides computer infrastructure for hundreds of thousands of websites involved […]
• Pakistan Arrests 21 in ‘Heartsender’ Malware Service
  May 28, 2025
  Authorities in Pakistan have arrested 21 individuals accused of operating "Heartsender," a once popular spam and malware dissemination service that operated for more than a […]
• Oops: DanaBot Malware Devs Infected Their Own PCs
  May 22, 2025
  The U.S. government today unsealed criminal charges against 16 individuals accused of operating and selling DanaBot, a prolific strain of information-stealing malware that has been […]
• KrebsOnSecurity Hit With Near-Record 6.3 Tbps DDoS
  May 20, 2025
  KrebsOnSecurity last week was hit by a near record distributed denial-of-service (DDoS) attack that clocked in at more than 6.3 terabits of data per second […]
• Breachforums Boss to Pay $700k in Healthcare Breach
  May 15, 2025
  In what experts are calling a novel legal outcome, the 22-year-old former administrator of the cybercrime community Breachforums will forfeit nearly $700,000 to settle a […]
• Patch Tuesday, May 2025 Edition
  May 14, 2025
  Microsoft on Tuesday released software updates to fix at least 70 vulnerabilities in Windows and related products, including five zero-day flaws that are already seeing […]

Secure World

• FBI Warning: AI-Driven Impersonation Attacks Target U.S. Officials
  May 30, 2025
  The FBI has issued a critical alert regarding a sophisticated cyber campaign in which malicious actors are impersonating senior U.S. […]
• OneDrive File Picker Flaw Exposes Cloud Storage to Over-Permission Risks
  May 29, 2025
  A new report from Oasis Security reveals a critical security flaw in Microsoft's OneDrive File Picker, exposing users to significant data […]
• Retailers Under Siege: Victoria's Secret Latest Victim of Cyberattacks
  May 28, 2025
  Victoria's Secret has taken its website offline and disabled some in-store services after experiencing a cybersecurity incident, marking the latest […]
• Cyber Criminals and Groceries?
  May 28, 2025
  In early May 2025, two of the United Kingdom's best-known grocers, Marks & Spencer (M&S) and the Co-op, as well […]
• 99% of Organizations Expose Sensitive Data to AI Tools, Report Shows
  May 23, 2025
  As organizations race to adopt artificial intelligence tools to boost productivity, automate tasks, and gain competitive insights, many are unknowingly […]
• A Federal AI Power Move… without a Real Preemption Clause
  May 22, 2025
  Just passed on Thursday, May 22nd, by the United States House in a razor-thin 215–214 vote, the so-called "One, Big, […]

Dark Reading

• 'Earth Lamia' Exploits Known SQL, RCE Bugs Across Asia
  May 30, 2025
  A "highly active" Chinese threat group is taking proverbial candy from babies, exploiting known bugs in exposed servers to steal […]
• FBI Warns of Filipino Tech Company Running Sprawling Crypto Scams
  May 30, 2025
  The US Treasury said cryptocurrency investment schemes like the ones facilitated by Funnull Technology Inc. have cost Americans billions of […]
• Vibe Coding Changed the Development Process
  May 30, 2025
  AI tools shook up development. Now, product security must change too.
• Tenable to Acquire AI Security Startup Apex
  May 30, 2025
  Apex will enhance Tenable's AI Aware tool by mitigating the threats of AI applications and tools not governed by organizations, […]
• CISO Stature Rises, but Security Budgets Remain Tight
  May 30, 2025
  The rate of compensation gains has slowed from the COVID years, and budgets remain largely static due to economic fears, […]
• ConnectWise Breached, ScreenConnect Customers Targeted
  May 30, 2025
  The software company, which specializes in remote IT management, said a "sophisticated nation state actor" was behind the attack but […]

Resources

• Detroit Mercy Cybersecurity Club – Open to all majors, the Detroit Mercy Cybersecurity Club, sponsored by the Detroit Chapter of ISACA, is an opportunity for students to delve deeper into computers and cybersecurity.
• NICCS – Cybersecurity CISA Resources and Tools, Cybersecurity Training Resources, Education Resources.
• TryHackMe – An interactive cybersecurity training platform offering guided labs and challenges to learn hacking and security concepts in a hands-on environment.
• Hack The Box – A penetration testing platform with virtual labs that challenge users to hack into simulated systems, enhancing offensive security skills and knowledge.
• NCAE Cyber Games – A competition platform for students participating in cyber games, supported by the National Centers of Academic Excellence in Cybersecurity, aimed at developing practical cybersecurity skills through competitive events.
• CyberSeek—To help close the cybersecurity skills gap, CyberSeek provides detailed, actionable data on supply and demand in the cybersecurity job market.
• CyberMission.tech – A Department of Defense (DoD) cyber initiative with high-tech, hands-on opportunities for military personnel, Veterans, and the public.
• CISA Cybersecurity Resources: Telework guidance and best practices, assessments, prevention, and response resources, cybersecurity awareness and best practices resources, misinformation, disinformation, and malinformation resources, mitigating cyber risks to the nation’s critical infrastructure.

Security Resources

• Institutional Security Resources and Awareness
• Information Technology Services

Goals & Unique Features of the Center

Following the goals for the National Initiative for Cybersecurity Education, the Center provides education, advanced security research and service to:

1. To advance the cybersecurity capabilities of the workforce within the Detroit Mercy service region as well as nationally.
2. To increase the number of highly educated, digitally literate citizens within underrepresented people and veterans and to produce professional specialists in areas of critical need.
3. To generate educational, outreach and research activities that will ensure the protection of the critical infrastructure of the United States as a whole.

Internal News