Center for Cybersecurity & Intelligence Studies

External News

Krebs On Security

• Self-Replicating Worm Hits 180+ Software Packages
  September 16, 2025
  At least 187 code packages made available through the JavaScript repository NPM have been infected with a self-replicating worm that steals credentials from developers and […]
• Bulletproof Host Stark Industries Evades EU Sanctions
  September 11, 2025
  In May 2025, the European Union levied financial sanctions on the owners of Stark Industries Solutions Ltd., a bulletproof hosting provider that materialized two weeks before […]
• Microsoft Patch Tuesday, September 2025 Edition
  September 9, 2025
  Microsoft Corp. today issued security updates to fix more than 80 vulnerabilities in its Windows operating systems and software. There are no known "zero-day" or […]
• 18 Popular Code Packages Hacked, Rigged to Steal Crypto
  September 8, 2025
  At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, […]
• GOP Cries Censorship Over Spam Filters That Work
  September 6, 2025
  The chairman of the Federal Trade Commission (FTC) last week sent a letter to Google's CEO demanding to know why Gmail was blocking messages from […]
• The Ongoing Fallout from a Breach at AI Chatbot Maker Salesloft
  September 1, 2025
  The recent mass-theft of authentication tokens from Salesloft, whose AI chatbot is used by a broad swath of corporate America to convert customer interaction into […]

Secure World

• Breach Lessons: From Bleeding Costs to Built-In Resilience
  September 18, 2025
  There is a lot to glean and learn from data breaches in 2025. Two recent reports make it abundantly clear: […]
• Governing Non-Human Identities: New Certification Offers Needed Help
  September 17, 2025
  Machines don't sleep. APIs don't negotiate. Scripted agents don't take coffee breaks. Non-human identities (NHIs) are everywhere in modern organizations—from […]
• The Due Diligence Imperative: Homes, Cars, and Software
  September 16, 2025
  Would you buy a house without an inspection? Would you buy a car without a Carfax report? Then why buy […]
• FBI FLASH Alert: Salesforce Under Siege
  September 15, 2025
  On September 12, 2025, the FBI released FLASH-20250912-001, warning of a surge in data theft and extortion campaigns targeting organizations' Salesforce […]
• Building Trust in Smart Cities with Secure Transit Payments
  September 14, 2025
  From New York City to London, smart cities are cropping up around the globe. In these urban hubs, technology is […]
• China-Linked APT41 Targets U.S. Trade Policy Stakeholders in Cyber Espionage
  September 12, 2025
  The U.S. House Select Committee on the Chinese Communist Party (CCP) has issued a warning about an ongoing cyber espionage campaign […]

Dark Reading

• TikTok Deal Won't End Enterprise Risks
  September 18, 2025
  The proposed restructuring plan would address many concerns related to the social media platform, but risks remain for security teams.
• SonicWall Breached, Firewall Backup Data Exposed
  September 18, 2025
  Threat actors breached the MySonicWall service and accessed backup firewall configuration files belonging to "fewer than 5%" of its install […]
• Mastering Digital Breadcrumbs to Stay Ahead of Evolving Threats
  September 17, 2025
  Digital forensics offers a challenging but rewarding career path for cybersecurity professionals willing to invest in specialized knowledge and continuous […]
• The Cloud Edge Is the New Attack Surface
  September 17, 2025
  The cloud now acts as the connecting infrastructure for many companies' assets — from IoT devices to workstations to applications […]
• Microsoft Disrupts 'RaccoonO365' Phishing Service
  September 17, 2025
  Phishing-as-a-service (PhaaS) kits have become an increasingly popular way for lower-skill individuals who want to get into cybercrime.
• 'Scattered Lapsus$ Hunters,' Others Announce End of Hacking Spree
  September 17, 2025
  Though the groups have shared their decision to go dark, threat researchers say there are signs that it's business as […]

Resources

• Detroit Mercy Cybersecurity Club – Open to all majors, the Detroit Mercy Cybersecurity Club, sponsored by the Detroit Chapter of ISACA, is an opportunity for students to delve deeper into computers and cybersecurity.
• NICCS – Cybersecurity CISA Resources and Tools, Cybersecurity Training Resources, Education Resources.
• TryHackMe – An interactive cybersecurity training platform offering guided labs and challenges to learn hacking and security concepts in a hands-on environment.
• Hack The Box – A penetration testing platform with virtual labs that challenge users to hack into simulated systems, enhancing offensive security skills and knowledge.
• NCAE Cyber Games – A competition platform for students participating in cyber games, supported by the National Centers of Academic Excellence in Cybersecurity, aimed at developing practical cybersecurity skills through competitive events.
• CyberSeek—To help close the cybersecurity skills gap, CyberSeek provides detailed, actionable data on supply and demand in the cybersecurity job market.
• CyberMission.tech – A Department of Defense (DoD) cyber initiative with high-tech, hands-on opportunities for military personnel, Veterans, and the public.
• CISA Cybersecurity Resources: Telework guidance and best practices, assessments, prevention, and response resources, cybersecurity awareness and best practices resources, misinformation, disinformation, and malinformation resources, mitigating cyber risks to the nation’s critical infrastructure.

Security Resources

• Institutional Security Resources and Awareness
• Information Technology Services

Goals & Unique Features of the Center

Following the goals for the National Initiative for Cybersecurity Education, the Center provides education, advanced security research and service to:

1. To advance the cybersecurity capabilities of the workforce within the Detroit Mercy service region as well as nationally.
2. To increase the number of highly educated, digitally literate citizens within underrepresented people and veterans and to produce professional specialists in areas of critical need.
3. To generate educational, outreach and research activities that will ensure the protection of the critical infrastructure of the United States as a whole.

Internal News