Three vulnerabilities in the CU Solutions Group (CUSG) content management system (CMS) could have been exploited by hackers in attacks aimed at credit unions, cybersecurity consulting firm LMG Security reports.
CUSG provides technology and services tailored to credit unions, including a CMS solution that automates content management and usage traffic without technical expertise.
According to LMG Security, CUSG CMS iterations prior to version 7.75 are impacted by three critical vulnerabilities that could allow an attacker to obtain ‘ultra admin’ privileges, thus gaining access to any credit union account that is not protected by multi-factor authentication (MFA).
[...]
Vulnerabilities in CUSG CMS Exposed Credit Unions to Attacks
Vulnerabilities in CUSG CMS Exposed Credit Unions to Attacks
-
- President
- Posts: 291
- Joined: Mon Oct 30, 2023 1:32 am
- Location: Vicksburg, MS
- ISC2 Member Status: Yes
- Contact:
Vulnerabilities in CUSG CMS Exposed Credit Unions to Attacks
Robert B. Carleton + ISC2 Central Mississippi President