What happened ThreatFabric has identified a new variant of the TrickMo Android banking malware, tracked as Trickmo.C, that introduces TON blockchain-based command-and-control communications designed to resist traditional takedown methods. The variant has been observed since January 2026 and is targeting banking and cryptocurrency wallet users in France, Italy, and Austria, ... Read More

What happened A security researcher has published a proof-of-concept tool called GhostLock that demonstrates how the legitimate Windows CreateFileW API can be abused to block access to files on local systems and SMB network shares without requiring elevated privileges. The tool and accompanying whitepaper were released publicly along with detection ... Read More

What happened OpenAI has announced Daybreak, an initiative combining its frontier AI models with an agentic code security harness called Codex Security to automate vulnerability detection and patch generation across software repositories. The initiative is positioned as a shift from reactive patching toward continuous, design-phase security integrated directly into development ... Read More

What happened Texas Attorney General Ken Paxton filed a lawsuit against Netflix on Monday, alleging the streaming company collected and shared subscriber data with advertisers and data brokers without user consent, in violation of Texas privacy law. The lawsuit accuses Netflix of operating what it describes as a surveillance machinery ... Read More

What happened The UK’s Information Commissioner’s Office fined South Staffordshire Water £963,900 on Monday after finding the company failed to detect hackers hidden inside its network for nearly two years, allowing the Cl0p ransomware group to ultimately publish the personal data of 633,887 customers and employees in August 2022. Initial ... Read More

What happened The scale of a data breach at telehealth platform provider OpenLoop Health has been confirmed through the HHS Office for Civil Rights breach portal, with the incident now listed as affecting up to 716,000 individuals. The breach was initially reported to OCR on March 17, 2026, but has ... Read More

What happened Instructure has paid a ransom to ShinyHunters, the extortion group behind two separate breaches of its Canvas learning management system, reaching a deal one day before the May 12 deadline the hackers had imposed. The company announced Monday night that it received digital confirmation of data destruction in ... Read More

The eight Ivy League universities collectively hold some of the most sensitive data on earth: classified defense research, clinical records, centuries of institutional knowledge, and the personal information of hundreds of thousands of students, faculty, staff, alumni, and patients. Their CISOs operate at the intersection of academic openness and strict ... Read More

Nonprofit organizations carry a particular kind of security burden. They protect sensitive donor data, beneficiary records, research classified by government contract, and in some cases the identities and locations of vulnerable people whose safety depends on that data staying secure. They do it with budgets that rarely match the threat ... Read More

What happened ShinyHunters escalated its ongoing extortion campaign against Instructure on May 7, 2026, defacing Canvas login portals at approximately 330 colleges and universities for roughly 30 minutes before Instructure took the platform offline. The defacement message claimed responsibility for the earlier Instructure breach, accused the company of ignoring contact ... Read More