Vulnerabilities in CUSG CMS Exposed Credit Unions to Attacks
Posted: Fri Feb 16, 2024 12:26 pm
Three vulnerabilities in the CU Solutions Group (CUSG) content management system (CMS) could have been exploited by hackers in attacks aimed at credit unions, cybersecurity consulting firm LMG Security reports.
CUSG provides technology and services tailored to credit unions, including a CMS solution that automates content management and usage traffic without technical expertise.
According to LMG Security, CUSG CMS iterations prior to version 7.75 are impacted by three critical vulnerabilities that could allow an attacker to obtain ‘ultra admin’ privileges, thus gaining access to any credit union account that is not protected by multi-factor authentication (MFA).
[...]
Vulnerabilities in CUSG CMS Exposed Credit Unions to Attacks
CUSG provides technology and services tailored to credit unions, including a CMS solution that automates content management and usage traffic without technical expertise.
According to LMG Security, CUSG CMS iterations prior to version 7.75 are impacted by three critical vulnerabilities that could allow an attacker to obtain ‘ultra admin’ privileges, thus gaining access to any credit union account that is not protected by multi-factor authentication (MFA).
[...]
Vulnerabilities in CUSG CMS Exposed Credit Unions to Attacks