Expert testimony on commercial real estate real property and debt. Buy-Sell; Landlord-Tenant; Agency. Litigation product types: multi-family, office, retail and industrial properties.
CoStar Group (NASDAQ: CSGP) is a global leader in commercial real estate information, analytics, online marketplaces, and 3D digital twin technology. Founded in 1986, CoStar Group is dedicated to digitizing the world’s real estate, empowering all people to discover properties, insights, and connections that improve their businesses and lives. CoStar Group’s major brands include CoStar, a leading global provider of commercial real estate data, analytics, and news; LoopNet, the most trafficked commercial real estate marketplace; Apartments.com, the leading platform for apartment rentals; Homes.com, the fastest-growing residential real estate marketplace; and Domain, one of Australia’s leading property marketplaces. CoStar Group’s industry-leading brands also include Matterport, a leading spatial data company whose platform turns buildings into data to make every space more valuable and accessible, STR, a global leader in hospitality data and benchmarking; Ten-X, an online platform for commercial real estate auctions and negotiated bids; and OnTheMarket, a leading residential property portal in the United Kingdom. CoStar Group’s websites attracted over 143 million average monthly unique visitors in the third quarter of 2025, serving clients around the world. Headquartered in Arlington, Virginia, CoStar Group is committed to transforming the real estate industry through innovative technology and comprehensive market intelligence. From time to time, we plan to utilize our corporate website as a channel of distribution for material company information. For more information, visit CoStarGroup.com.
Security & Compliance Standards Overview
No incidents recorded for Mullin Capital & Asset Management, LLC in 2026.
No incidents recorded for CoStar Group in 2026.
Mullin Capital & Asset Management, LLC cyber incidents detection timeline including parent company and subsidiaries
CoStar Group cyber incidents detection timeline including parent company and subsidiaries
Last 3 Security & Risk Events by Company
Hirschmann EagleSDV version 05.4.01 prior to 05.4.02 contains a denial-of-service vulnerability that causes the device to crash during session establishment when using TLS 1.0 or TLS 1.1. Attackers can trigger a crash by initiating TLS connections with these protocol versions to disrupt service availability.
The stored API keys in temporary browser client is not marked as protected allowing for JavScript console or other errors to allow for extraction of the encryption credentials.
XSS vulnerability in cveInterface.js allows for inject HTML to be passed to display, as cveInterface trusts input from CVE API services
Multiple reflected cross-site scripting (XSS) vulnerabilities in the login.php endpoint of Interzen Consulting S.r.l ZenShare Suite v17.0 allows attackers to execute arbitrary Javascript in the context of the user's browser via a crafted URL injected into the codice_azienda and red_url parameters.
A reflected cross-site scripting (XSS) vulnerability in the login_newpwd.php endpoint of Interzen Consulting S.r.l ZenShare Suite v17.0 allows attackers to execute arbitrary Javascript in the context of the user's browser via a crafted URL injected into the codice_azienda parameter.
