Canvas login portals hacked in mass ShinyHunters extortion campaign

The ShinyHunters extortion gang has breached education technology giant Instructure again, this time exploiting another ...

ShinyHunters Extorts Universities in New Instructure Canvas Hack

ShinyHunters-linked attackers defaced Canvas portals, disrupting finals week access and exposing SaaS security risks for ...
Bleeping Computer

Official CheckMarx Jenkins package compromised with infostealer

Checkmarx warned over the weekend that a rogue version of its Jenkins Application Security Testing (AST) plugin had been published on the Jenkins Marketplace. The compromise was claimed by the TeamPCP ...
Forbes

X To Retire Twitter Domain And Lock Accounts Nov. 10

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. X has warned users that it’s retiring the Twitter.com domain ...

The Hidden Risk In Access Management: How Identity Sprawl Is Undermining Business Security

Access sprawl—not onboarding or offboarding—is the biggest identity security risk. Here's how overprovisioned permissions ...
CSO Online

Malicious Hugging Face model masquerading as OpenAI release hits 244K downloads

The repository reached the #1 trending position on Hugging Face within 18 hours, highlighting how public AI repositories are ...
PCMag

Still Using Passwords? It's Time to Upgrade to Passkeys Now

As managing editor of PCMag's security team, it's my responsibility to ensure that our product advice is evidence-based, ...
PCMag

Don't Let Your Passwords Die With You. Here's How to Share Account Access Safely

Digital legacy features make it easier to transfer account access without sharing passwords up front. I'll show you how to ...