Search

engadget.com › ai

A Meta agentic AI sparked a security incident by acting without permission - Engadget

A Meta agentic AI sparked a security incident by acting without permission Maybe think twice before letting an AI take over all your tech? …

Mar 18, 2026 · Anna Washenko

Top stories

theverge.com

Cybersecurity

6d ago

bleepingcomputer.com

OpenAI confirms security breach in TanStack supply chain attack

1w ago

techcrunch.com

US bank discloses security lapse after sharing customer data with AI app | TechCrunch

1w ago

bleepingcomputer.com

Signal adds security warnings for social engineering, phishing attacks

1w ago

theregister.com › security › 2026 › …

Next.js developer Vercel warns customer creds compromised

… The attacker used that access to take over the employee's Vercel Google Workspace account, which enabled them to gain access to some Vercel environments and environment variables that were not marked as “sensitive.” Context.ai has also published a security bulletin that reveals a March incident tha… …

Apr 20, 2026 · Simon Sharwood

bleepingcomputer.com › news › security

Škoda warns of customer data breach after online shop hack

… Download Now Related Articles: Instructure reaches 'agreement' with ShinyHunters to stop data leak Home security giant ADT data breach affects 5.5 million people Vimeo data breach exposes personal information of 119,000 people Cosmetics giant Rituals discloses data breach affecting customers Amtrak… …

May 12, 2026 · Sergiu Gatlan

techcrunch.com › 2026 › 05 › …

US cyber agency CISA exposed reams of passwords and cloud keys to the open web | TechCrunch

… Zack Whittaker Zack Whittaker is the security editor at TechCrunch. He also authors the weekly cybersecurity newsletter, this week in security . …

May 19, 2026 · Zack Whittaker

Discussions and forums

r/sysadmin · u/xendr0me · 1w ago

What a bunch of idiots... Canvas

https://www.reddit.com/r/canvas/comments/1taj9mk/instructure_just_confirmed_they_paid_the_ransom/ "We received assurances that it will not be further shared on the dark web or elsewhere, and we received proof that any co…

Hacker News · u/introvertmac · Dec 3, 2025

Tell HN: Compliance is not equal to Security

For over a decade, I’ve been doing bug bounty, security audits, and security consulting. And if there’s one thing I’ve seen repeatedly, it’s this:Most startups call a security engineer or hire a security agency only when…

1 1

r/netsec · u/unknownhad · 2w ago

The compression of the exploit timeline: Why n-day gaps and 90-day embargoes are failing in practice.

The traditional vulnerability disclosure timeline relies on a fundamental assumption: exploit development and vulnerability discovery take time. Over the last 12 months the integration of LLMs into offensive tooling has …

r/selfhosted · u/ldkv · 1w ago

Accidentally exposed publicly my entire LAN for 2 weeks

Posting this as a PSA / confession because I almost had a heart attack last night and I figure if I got bit, someone else will too. TL;DR: Replaced pangolin + NPMplus with a double-Caddy + WireGuard setup. Put a "clever"…

techspot.com › news

A cyberattack on Canvas knocked out access for students at Harvard, Columbia, and hundreds of other schools during finals

The company's chief information security officer, Steve Proud, wrote in an incident log that Instructure had "recently experienced a cybersecurity incident perpetrated by a criminal threat actor." A day later, he added that the exposed data included names, email addresses, student ID numbers, and m… …

May 10, 2026

techcrunch.com › 2026 › 05 › …

AI evaluation startup Braintrust confirms breach, tells every customer to rotate sensitive keys | TechCrunch

… Topics AI , Braintrust , cybersecurity , data breach , hackers , hacking , Security When you purchase through links in our articles, we may earn a small commission . …

May 6, 2026 · Lorenzo Franceschi-Bicchierai

bleepingcomputer.com › news › microsoft

Microsoft blames macOS update for undismissible Teams location prompts

… Download Now Related Articles: Kali Linux can now run in Apple containers on macOS systems SHub macOS infostealer variant spoofs Apple security updates Microsoft confirms Windows 11 security update install issues Microsoft May 2026 Patch Tuesday fixes 120 flaws, no zero-days Microsoft says backend … …

May 19, 2026 · Sergiu Gatlan

bleepingcomputer.com › news › security

Instructure reaches 'agreement' with ShinyHunters to stop data leak

… We recommend that customers continue normal monitoring of their Canvas environments, integrations, and administrative activity." Since then, the company has temporarily shut down Free-For-Teacher accounts and said that it's working to resolve these security issues to prevent future incidents. …

May 12, 2026 · Sergiu Gatlan

wired.com › story

Meta Pauses Work With Mercor After Data Breach Puts AI Industry Secrets at Risk

… Mercor confirmed the attack in an email to staff on March 31. “There was a recent security incident that affected our systems along with thousands of other organizations worldwide,” the company wrote. …

Apr 3, 2026 · Maxwell Zeff

theverge.com › tech › 928470

Canvas owner reaches ‘agreement’ with hackers to secure stolen data

Canvas owner reaches ‘agreement’ with hackers to secure stolen data

May 12, 2026 · Jess Weatherbed