CIRCLE WITH A DOT

#Instructure reaches 'agreement' with #ShinyHunters to stop data leakhttps://www.bleepingcomputer.com/news/security/instructure-reaches-agreement-with-shinyhunters-to-stop-data-leak/#cybersecurity #privacy #DataBreach #ransomware

Offense Just Got a Co-Pilot.The story that should not get buried under this week's patch pile is a quiet one from the ICS/OT section: attackers used #Claude and #ChatGPT to assist an intrusion into a water utility in Monterrey. The OT #breach ultimately failed — but that's almost beside the point. What the Dragos report actually documents is AI being used as a competent recon assistant: autonomously identifying a vNode SCADA/IIoT interface, recommending a password-spray attack, and generating a Python toolkit on the fly. No novel exploit. No nation-state budget. Just patience and a chat window.This is the part of the AI-in-security conversation that tends to get lost between the breathless vendor marketing and the "fully autonomous AI attacks are not yet observed" reassurances. The threat doesn't need to be autonomous to be meaningful. Lowering the reconnaissance floor — making #OT infrastructure more legible to attackers who previously lacked the domain knowledge to navigate it — is already a significant capability shift. The Monterrey incident didn't succeed. The next one will be run by someone who learned from it.→ Week #19/2026 also covers: A 64-day cPanel zero-day window, #ShinyHunters hits an ed-tech giant, and Europe blocks #Huawei from its solar grid.Full issue https://infosec-mashup.santolaria.net/p/infosec-mashup-19-2026-offense-just-got-a-co-pilotIf you find it useful, subscribe to get it in your inbox every weekend #infosecMASHUP #cybersecurity #infosec #threatintel #AI

ShinyHunters reportedly defaced Canvas login pages after another alleged Instructure breach.The incident raises concerns around:• EdTech platform security• Student/faculty data exposure• Extortion-driven attacks• Third-party risk managementEducation infrastructure is increasingly becoming a high-value cyber target.Source: https://techcrunch.com/2026/05/07/hackers-deface-school-login-pages-after-claiming-another-instructure-hack/Follow @technadu for more threat intelligence updates.#CyberSecurity #InfoSec #DataBreach #ShinyHunters #Canvas

Just in case anyone else is interested, these are the #UK universities listed in the #ShinyHunters #Instructure #Canvas breach list :Arkansas State UniversityBabson CollegeBath Spa UniversityBirmingham City UniversityCoventry UniversityCranfield UniversityEdge Hill UniversityGlasgow School of ArtHeriot-Watt UniversityKingston UniversityLondon Business SchoolLondon Metropolitan UniversitySwansea UniversityUniversity College BirminghamUniversity of BirminghamUniversity of BradfordUniversity of HertfordshireUniversity of HullUniversity of OxfordUniversity of StirlingUniversity of SunderlandUniversity of SussexUniversity of WinchesterUniversity of Wolverhampton

@Beachbum @briankrebs AWS bucket “issues” have been reported for this latest breach.

Another #EdTech vendor has allegedly fallen prey to #ShinyHunters in yet another Salesforce-related hack-and-leak incident.Follett Software markets Aspen, Destiny, and Classroom Library Manager software to schools.The threat actors claim to have acquired 4 million records with PII and other corporate files, and have given Follett until May 4 to contact them. Because this is Salesforce related, there may actually be very little identifiable information about students or personnel in the customer support data, unless district or school personnel gave students' names or details in seeking help with the software or specific problems. I guess we'll find out soon. #EduSec #databreach #hackandleak@douglevin @funnymonkey @mkeierleber