LIVONIA, Mich.–CU Solutions Group (CUSG), has issued an updated statement to the 275 CU web services clients running its content management system regarding a temporary vulnerability that was discovered and remedied on Oct. 28, 2023.
“The vulnerability was identified by LMG Security, a cybersecurity consulting firm on Oct. 26, 2023, and was immediately remedied by CUSG within 48 hours,” CUSG said in its statement, adding it was able to make the fixes independently without client impact or exposure.
The statement also states that the credit union trade press was being notified because LMG Security “published a security statement that may have been picked up by certain media outlets. However, they failed to report that CUSG had immediately taken remedial action without client impact. CUSG has notified LMG of that omission and has asked that they clarify this for their readers.”
CUToday.info published the claims that were made by one “cybersecurity researcher” here on Feb. 11 that suggested private data had been made public, but only after obtaining a statement of response from CUSG in which it stated that no member or client data had been breached or compromised. In that statement CUSG, which is a CUSO of the Michigan league, said it did not pay any type of “bounty” as had been requested.
‘Continuous Processes’
“Like other technology services providers, CUSG conducts regular audits, engages outside consultants, and relies on numerous partners to assure that all of its products minimize security risks for CUSG clients,” the company said in its statement. “Again, in this case, these continuous processes are an example of those efforts being successful.”
Now With Free Shipping! The CUToday.info Daily News Email Keeps Getting Better!
The biggest, best and freshest news reporting in credit unions remains free, and now has an added bonus---free shipping to your email address! That’s right. Each morning CUToday.info delivers its daily Fresh Today news update offering the latest headlines and breaking news right to your email, with the easy-to-read headlines format allowing you to click on the stories that interest you most in order to learn more. So stop paying those bank-fee-like subscription prices from other so-called “news” publications!
If you haven’t yet signed up for the new email solution on which CUToday.info has partnered with ResponseGenius, you can do so here. Signing up requires less than one minute of your time—and it’s free!
Please note that after signing up you may need to go to your Spam/Junk folder and mark the morning headlines email as safe. CUToday.info does not provide its list of readers and emails to outside parties, and we will not be contacting you to sell you an extended warranty or sending you any links so you may cash in on an inheritance you didn’t know was coming.
And did we mention it’s free?