ShinyHunters escalates Canvas attacks with school login defacements
Days after confirming a major data breach, Instructure is now facing a second blow. Earlier this week, Instructure confirmed a major data breach affecting its…
Month: May 2026
TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms
Threat hunters have flagged a previously undocumented Brazilian banking trojan dubbed TCLBANKER that’s capable of targeting 59 banking, fintech, and cryptocurrency platforms. The activity is…
Fujitsu UK pays staff bonuses as it sits on Post Office scandal contribution
Fujitsu will pay bonuses to UK staff this year despite the ongoing controversy around its involvement in the Post Office scandal and its delayed contribution…
Harris Farm Markets bolsters digital, data leadership
Australian retailer Harris Farm Markets has hired a chief information and digital officer and head of data within a matter of weeks, signalling an expansion…
In Other News: Train Hacker Arrested, PamDOORa Linux Backdoor, New CISA Director Frontrunner
SecurityWeek’s weekly cybersecurity news roundup offers a concise overview of important developments that may not receive full standalone coverage but remain relevant to the broader…
Zara Data Breach: 197,000 Customers Exposed in Third-Party Security Incident
Zara Data Breach: 197,000 Customers Exposed in Third-Party Security Incident Pierluigi Paganini May 08, 2026 Nearly 200,000 Zara customers were exposed in a third-party breach…
Instructure confirms cybersecurity incident
The ed tech company that operates Canvas said information impacted by the data breach includes messages, names, email addresses and student ID numbers. Source link
Sen. Schumer seeks DHS plan on AI cyber coordination with state, local governments
The Senate’s top Democrat called on the Department of Homeland Security Friday to work closely with state and local governments to defend against artificial intelligence-strengthened…
Your CTEM program is probably ignoring MCP. Here’s how to fix it
Introduced by Anthropic in late 2024, MCP acts as the plugin architecture for agentic AI. If your team isn’t scanning for, mapping or monitoring for…
Threat Activity Enablers: The Backbone of Today’s Threat Landscape
This article introduces threat activity enablers (TAEs), the infrastructure providers and networks that underpin modern cyber threats across both criminal and state-sponsored activity. These entities…
MOVEit Transfer Critical Vulnerability CVE-2023-34362
UPDATED: 1 June 2023 @ 1733 ET – Added shareable Huntress YARA rule for assistance in detection effort UPDATED: 1 June 2023 @ 2023 ET…
Trellix source code breach claimed by RansomHouse hackers
The attack on the Trellix source code repository disclosed last week has been claimed by the RansomHouse threat group, which leaked a small set of…