Geek-Guy.com

Tag: learning

AI, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, Network Security, Risk Management

Lessons from the Canvas cyberattack

Canvas cyberattack: Who, what, when, how? What and when? Over May 6 and 7, 2026, Canvas learning management system (LMS) users were served up a defaced web page in place of the expected login page. The altered web page displayed a warning by the ShinyHunters criminal hacker and extortion group advising of the Instructure compromise.…

Read more →

AI, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, Network Security, Risk Management

Lessons from the Canvas cyberattack

Canvas cyberattack: Who, what, when, how? What and when? Over May 6 and 7, 2026, Canvas learning management system (LMS) users were served up a defaced web page in place of the expected login page. The altered web page displayed a warning by the ShinyHunters criminal hacker and extortion group advising of the Instructure compromise.…

Read more →

AI, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, Network Security, Risk Management

Lessons from the Canvas cyberattack

Canvas cyberattack: Who, what, when, how? What and when? Over May 6 and 7, 2026, Canvas learning management system (LMS) users were served up a defaced web page in place of the expected login page. The altered web page displayed a warning by the ShinyHunters criminal hacker and extortion group advising of the Instructure compromise.…

Read more →

AI, Global Security News, Risk Management

Secure Code Warrior connects developer training to AI usage and code risks

Secure Code Warrior has introduced Adaptive Learning, a capability designed to help organizations support AI software governance through targeted training based on identified risks. The feature delivers contextual microlearning and tracks outcomes at the code commit level. Software development is going through its biggest shift ever, from human-written code, to AI-assisted coding, to fully agentic…

Read more →

Exploits, Global Security News

KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike

A now-patched high-severity security flaw affecting Digital Knowledge KnowledgeDeliver, a Learning Management System (LMS) popular in Japan, was exploited as a zero-day to deliver the Godzilla web shell and ultimately facilitate the deployment of Cobalt Strike Beacon. The vulnerability, tracked as CVE-2026-5426 (CVSS score: 7.5), stems from the use of hard-coded ASP.NET machine keys, leading…

Read more →

AI, Apps, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, Government & Policy, malware, Network Security, privacy, Risk Management

The Massive Canvas Cyberattack That Allegedly Ended in a Secret Deal With Hackers

The cyberattacks targeting Instructure’s Canvas learning management system unfolded as at least two distinct but likely connected operational phases that exposed the fragility of browser-based SaaS trust models inside modern educational infrastructure. What began in late April as a suspected cloud-platform compromise involving large-scale data exfiltration evolved by early May into a far more aggressive…

Read more →

AI, Data Breaches, Global Security News, Risk Management

Instructure took a risky approach to recover stolen Canvas data

Instructure, the company behind the online learning platform Canvas, said it reached an agreement with the extortion group ShinyHunters to prevent data stolen in a recent breach from being leaked online. According to the company’s website, Canvas has more than 30 million active users worldwide and serves more than 8,000 institutions. Although Instructure did not…

Read more →

AI, Cybersecurity, Data Breaches, Data Security, Global Security News, Government & Policy

Educational tech firm Instructure data breach may have impacted 9,000 schools

Instructure, maker of the Canvas learning platform, is investigating a cyber incident that exposed users’ personal data. Instructure is a U.S.-based educational technology company best known for developing Canvas, one of the world’s most widely used learning management systems (LMS).  The U.S. firm confirrmed a cybersecurity incident that exposed users’ personal information. The company is working with external…

Read more →

AI, Data Breaches, Global Security News

ShinyHunters claims it stole 1.4 million records from Udemy

The ShinyHunters group claims it has breached the Udemy, one of the world’s largest online learning platforms. According to Have I Been Pwned, the leaked dataset contained 1.4 million unique email addresses of customers and instructors, along with names, physical addresses, phone numbers, employer information, and instructor payout methods, including PayPal, cheque, and bank transfer.…

Read more →

AI, Apps, Cybersecurity, Data Breaches, Endpoint, Global Security News, Network Security, Risk Management

ShinyHunters Claims Udemy Data Breach of 1.4M Users 

A notorious threat actor group has targeted Udemy, one of the world’s largest online learning platforms.  ShinyHunters claims it has stolen more than 1.4 million user records and is threatening to leak the data within days.  “Over 1.4M records containing PII and other internal corporate data have been compromised. Pay or Leak,” the threat actors…

Read more →

AI, Endpoint, Global Security News, malware

Malware detectors trained on one dataset often stumble on another

Machine learning models built to catch malware on Windows systems are typically evaluated on data that closely resembles their training set. In practice, the malware arriving on enterprise endpoints looks different, comes from different sources, and in many cases has been deliberately obfuscated to evade detection. A study from researchers at the Polytechnic of Porto…

Read more →

AI, Apps, Compliance, Cybersecurity, Data Security, Global Security News, governance, Risk Management, Security & Governance, Security Blog, Security, Identity, & Compliance

Implementing data governance on AWS: Automation, tagging, and lifecycle strategy – Part 1

Generative AI and machine learning workloads create massive amounts of data. Organizations need data governance to manage this growth and stay compliant. While data governance isn’t a new concept, recent studies highlight a concerning gap: a Gartner study of 300 IT executives revealed that only 60% of organizations have implemented a data governance strategy, with…

Read more →

AI, Apps, Compliance, Cybersecurity, Data Security, Global Security News, governance, Risk Management, Security & Governance, Security Blog, Security, Identity, & Compliance

Implementing data governance on AWS: Automation, tagging, and lifecycle strategy – Part 1

Generative AI and machine learning workloads create massive amounts of data. Organizations need data governance to manage this growth and stay compliant. While data governance isn’t a new concept, recent studies highlight a concerning gap: a Gartner study of 300 IT executives revealed that only 60% of organizations have implemented a data governance strategy, with…

Read more →

AI, Apps, Compliance, Cybersecurity, Data Security, Global Security News, governance, Risk Management, Security & Governance, Security Blog, Security, Identity, & Compliance

Implementing data governance on AWS: Automation, tagging, and lifecycle strategy – Part 1

Generative AI and machine learning workloads create massive amounts of data. Organizations need data governance to manage this growth and stay compliant. While data governance isn’t a new concept, recent studies highlight a concerning gap: a Gartner study of 300 IT executives revealed that only 60% of organizations have implemented a data governance strategy, with…

Read more →

AI, Apps, Compliance, Cybersecurity, Data Security, Global Security News, governance, Risk Management, Security & Governance, Security Blog, Security, Identity, & Compliance

Implementing data governance on AWS: Automation, tagging, and lifecycle strategy – Part 1

Generative AI and machine learning workloads create massive amounts of data. Organizations need data governance to manage this growth and stay compliant. While data governance isn’t a new concept, recent studies highlight a concerning gap: a Gartner study of 300 IT executives revealed that only 60% of organizations have implemented a data governance strategy, with…

Read more →