A rapidly expanding malware campaign dubbed Mini Shai-Hulud is compromising trusted software publishing pipelines across npm and PyPI ecosystems, infecting widely used open-source packages tied...
Educational technology company Instructure has confirmed it reached an agreement with the threat actors behind the recent Canvas breach after attackers threatened to leak allegedly...
ShinyHunters has issued a rare public statement amid its ongoing extortion campaign, while adding education publisher Houghton Mifflin Harcourt Company to its leak site with...
The Everest ransomware group has allegedly added UK-based addiction treatment provider Rehab Clinics Group Ltd to its leak site, claiming to possess sensitive patient communications,...
Australian mining software provider Scope Systems is reportedly recovering from a cyber incident that disrupted hosted services used by mining and resources-sector customers, as conflicting...
Threat actor FulcrumSec has claimed responsibility for an alleged breach involving Arup Group, the multinational engineering and infrastructure consulting firm behind major transportation, energy, urban...
Attribution: Unknown, financially motivated cybercriminal group First Observed: 2025 Primary Operations: Data exfiltration, cloud data exposure, source code leaks, public dataset releases FulcrumSec is an...
A threat actor operating under the name FulcrumSec has claimed responsibility for a large-scale data breach involving Stuf Storage, a U.S.-based self-storage provider, alleging the...
The fallout from the Instructure Canvas data breach continues to expand, with multiple U.S. schools, universities, and statewide education systems now reporting potential exposure of...
A North Carolina school district has confirmed potential exposure of student and staff data following the recent cyberattack on Instructure’s Canvas platform, marking one of...
