Massive Canvas Breach, 'Mini Shai-Hulud' Supply Chain Worm, and Microsoft's Largest Patch Tuesday of the Year

American Lending Center Breach Exposes 123K SSNs from 2025 Ransomware Attack

The American Lending Center (ALC) is notifying over 123,000 individuals that their sensitive personal information, including Social Security numbers and financial data, was compromised during a ransomware attack that occurred in July 2025. The significant dela...

Foxconn Hit by Nitrogen Ransomware; Gang Claims Theft of Apple, Intel Data

Global electronics manufacturer Foxconn has confirmed a ransomware attack that disrupted operations at its North American factories. The Nitrogen ransomware gang, believed to be an offshoot of the Conti group, has claimed responsibility. The attackers allege t...

Microsoft's May Patch Tuesday: 137 Flaws Fixed, Including Critical Netlogon RCE

Microsoft's May 2026 Patch Tuesday is one of the largest of the year, addressing 137 vulnerabilities. In a notable break from a 22-month trend, no actively exploited zero-day vulnerabilities were fixed. The update includes patches for 30 critical flaws, most n...

CISA and G7 Partners Release New Guidance for AI SBOMs

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and its G7 partners have published new joint guidance on the minimum elements for a Software Bill of Materials for Artificial Intelligence (AI SBOM). The guidance aims to increase transparency an...

Industrial Sector Most Targeted by Ransomware, NCC Group Report Warns

A new report from NCC Group highlights the severe and escalating cyber risk facing the Operational Technology (OT) sector. The analysis, covering March 2025 to March 2026, found that the industrial sector was the most frequent target of ransomware, suffering 2...

OpenAI Launches 'Daybreak' to Automate Vulnerability Hunting with AI

OpenAI has launched 'Daybreak,' a new cybersecurity initiative that uses its advanced AI models, including the new GPT-5.5-Cyber, to help organizations automatically find, validate, and remediate software vulnerabilities. Announced on May 12, 2026, the platfor...

Frame Security Launches with $50M to Combat AI-Powered Phishing and Deepfakes

A new cybersecurity startup, Frame Security, has launched with $50 million in funding to tackle the growing threat of AI-powered social engineering. Founded by veterans of Wiz and Israel's Unit 8200, Frame is building a 'human risk security' platform. It uses...

Siemens Patches Critical Flaws in SIMATIC S7 PLCs, RUGGEDCOM Devices

As part of the May 2026 Patch Tuesday cycle, Siemens has released 18 security advisories for its industrial products, addressing numerous critical and high-severity vulnerabilities. The patches cover widely used devices, including SIMATIC S7 PLCs and RUGGEDCOM...

WebdriverIO Flaw (CVSS 9.8) Allows CI/CD Takeover via Malicious Git Branches

A critical command injection vulnerability, CVE-2026-25244, with a CVSS score of 9.8, has been found in the popular WebdriverIO open-source testing framework. The flaw exists in the '@wdio/browserstack-service' package and can be triggered by a specially craft...

ShinyHunters Claims Massive Canvas Breach, Disrupting 275 Million Users at 9,000 Institutions

Update:Instructure has announced an agreement with ShinyHunters following the Canvas LMS breach. The company claims the deal includes the deletion of 3.65 TB of data belonging to 275 million users. While Instructure did not disclose if a ransom was paid, the agreemen...

UK Water Company Fined £1M After Cl0p Lurked on Network for 20 Months Undetected

Update:New analysis of the Cl0p ransomware breach at South Staffordshire Water includes additional MITRE ATT&CK techniques. Beyond initial spearphishing, the attackers likely used persistence mechanisms like Registry Run Keys or Scheduled Tasks, harvested credentials...