Canvas owner reaches ‘agreement’ with hackers to secure stolen data
Canvas owner reaches 'agreement' with hackers to secure stolen data Instructure, the company behind the Canvas learning management platform, says it has “reached an agreement” with hackers that breached its systems last week to prevent stolen data from being leaked online. The ShinyHunters hacking group claimed responsibility for the attack before Canvas was briefly taken […]
OpenAI just released its answer to Claude Mythos
OpenAI just released its answer to Claude Mythos OpenAI is launching Daybreak, an AI initiative focused on detecting and patching vulnerabilities before attackers find them. Daybreak uses the Codex Security AI agent that launched in March to create a threat model based on an organization’s code and focus on possible attack paths, validate likely vulnerabilities, […]
Google stopped a zero-day hack that it says was developed with AI
Google stopped a zero-day hack that it says was developed with AI For the first time, Google says it has spotted and stopped a zero-day exploit developed with AI. According to a report from Google Threat Intelligence Group (GTIG), “prominent cyber crime threat actors” were planning to use the vulnerability for a “mass exploitation event” […]
Canvas is down as ShinyHunters threatens to leak school’s data
Canvas is down as ShinyHunters threatens to leak school's data The Instructure-owned learning management platform, Canvas, is down after recently confirming a massive data breach that impacted student names, email addresses, ID numbers, and messages. Students attempting to access the system on Thursday saw a message from the hacking group ShinyHunters, which claimed responsibility for […]
Severe Linux Copy Fail security flaw uncovered using AI scanning help
Severe Linux Copy Fail security flaw uncovered using AI scanning help Nearly every Linux distribution released since 2017 is currently vulnerable to a security bug called “Copy Fail” that allows any user to give themselves administrator privileges. The exploit, publicly disclosed as CVE-2026-31431 on Wednesday, uses a Python script that works across all of the […]
GitHub rushed to fix a critical vulnerability in less than six hours
GitHub rushed to fix a critical vulnerability in less than six hours GitHub employees fixed a critical remote code execution vulnerability in less than six hours last month. Wiz Research used AI models to uncover a vulnerability in GitHub’s internal git infrastructure that could have allowed attackers to access millions of public and private code […]
Anthropic’s Mythos breach was humiliating
Anthropic's Mythos breach was humiliating Anthropic’s tightly controlled rollout of Claude Mythos has taken an awkward turn. After spending weeks insisting the AI model is so capable at cybersecurity that it is too dangerous to release publicly, it appears the model fell into the wrong hands anyway. According to Bloomberg, a “small group of unauthorized […]
Anthropic’s Mythos rollout has missed America’s cyberscurity agency
Anthropic's Mythos rollout has missed America's cyberscurity agency Several US federal agencies are taking up Anthropic’s new cybersecurity model to find vulnerabilities, but one is reportedly not getting in on the action: the nation’s central cybersecurity coordinator. On Tuesday, Axios reported that the Cybersecurity and Infrastructure Security Agency (CISA) didn’t have access to Mythos Preview, […]
Anthropic’s most dangerous AI model just fell into the wrong hands
Anthropic's most dangerous AI model just fell into the wrong hands Anthropic’s Mythos AI model, a powerful cybersecurity tool that the company said could be dangerous in the wrong hands, has been accessed by a “small group of unauthorised users,” Bloomberg reports. An unnamed member of the group, identified only as “a third-party contractor for […]
Cloud development platform Vercel was hacked
Cloud development platform Vercel was hacked Vercel, a major development platform that hosts and deploys web apps, was compromised, and the hackers are attempting to sell stolen data. A person claiming to be a member of ShinyHunters, which was behind the recent hack of Rockstar Games, posted some data online, including employee names, email addresses, […]