Contact Info
Center for Applied Cyber Education
Cyber Threat Updates
- New Android Trojan Crocodilus Abuses Accessibility to Steal Banking and Crypto Credentials
Cybersecurity researchers have discovered a new Android banking malware called Crocodilus that’s primarily designed to target users in Spain and Turkey. “Crocodilus enters the scene not as a … - BlackLock Ransomware Exposed After Researchers Exploit Leak Site Vulnerability
In what’s an instance of hacking the hackers, threat hunters have managed to infiltrate the online infrastructure associated with a ransomware group called BlackLock, uncovering crucial informati … - Researchers Uncover 46 Critical Flaws in Solar Inverters From Sungrow, Growatt, and SMA
Cybersecurity researchers have disclosed 46 new security flaws in products from three solar inverter vendors, Sungrow, Growatt, and SMA, that could be exploited by a bad actor to seize control of devi … - CoffeeLoader Uses GPU-Based Armoury Packer to Evade EDR and Antivirus Detection
Cybersecurity researchers are calling attention to a new sophisticated malware called CoffeeLoader that’s designed to download and execute secondary payloads. The malware, according to Zscaler Th … - Product Walkthrough: How Datto BCDR Delivers Unstoppable Business Continuity
Long gone are the days when a simple backup in a data center was enough to keep a business secure. While backups store information, they do not guarantee business continuity during a crisis. With IT d …
MS-ISAC Updates
- DeepSeek: A New Player in the Global AI Race
CIS analysts break down the rise of DeepSeek, a GenAI model that collects data and introduces security risks for users. - Active Lumma Stealer Campaign Impacting U.S. SLTTs
The CIS CTI team spotted a Lumma Stealer campaign where SLTT victims were redirected to malicious webpages delivering fake CAPTCHA verifications. - CIS Benchmarks March 2025 Update
Here is an overview of the CIS Benchmarks that the Center for Internet Security (CIS) updated or released for March 2025. - CIS Benchmarks February 2025 Update
Here is an overview of the CIS Benchmarks that the Center for Internet Security (CIS) updated or released for February 2025. - Top 10 Malware Q4 2024
In Q4 2024, the Top 10 Malware observed by the MS-ISAC® changed slightly from the previous quarter. Here are the malware that topped our list.