LEGAL AND REGULATORY NEWS

Bain Capital Potentially on Hook for PowerSchool Data Breach

A client alert from Womble Bond Dickinson (US) discusses what it describes as a first-of-its-kind ruling: a California court did

May 1, 2026

Responding to a Data Breach: How to Preserve the Attorney-Client Privilege

This client alert is based on a longer article Patrick Emerson McCormick wrote for the Conference on Consumer Finance Law Quarterly

April 29, 2026

Alleged Chinese state hacker involved in Silk Typhoon extradited to U.S.

The Record reports: A Chinese national accused of being a member of a state-backed hacking group has been extradited to

April 28, 2026

Old Laws, New Tricks: Connecticut Laws Apply to Artificial Intelligence

The law firm of Squire Patton Boggs writes: Connecticut Attorney General William Tong recently issued an advisory memorandum (“Advisory”) to all “State

April 17, 2026

California businesses have new cybersecurity obligations

Comply or risk class-action litigation? IAPP explains: Last year, the California Privacy Protection Agency adopted a major new rule requiring certain businesses

April 16, 2026

Consumer Alerts

Facebook hacker puts Florida woman’s face on fake hospital photo

New York Yankees and Rangers fans at high risk of password breach; millions hacked, study reveals

Miscellaneous News

Intoxalock Cyberattack Prevented Some Drivers Required to Take Breathalyzer Tests from Starting Their Cars

DysruptionHub reports: A cybersecurity event has disrupted calibration systems at Des Moines, Iowa-based Intoxalock since March 14, leaving some court-ordered

March 20, 2026

Discord Age Verification Faces Backlash — Could Your ID Leak Like Before?

The International Business Times reports: Discord is preparing to enforce a global age verification system from early March that will

February 10, 2026

LATEST NEWS ON HACKING, CYBER SECURITY & DATA BREACH

Featured News and Articles

Cyberattack

Edtech giant Instructure waves white flag, makes deal with ShinyHunters to resolve incident

When education software giant Instructure announced on May 1 that its widely used Canvas software was unavailable as it investigated a data security incident, it suggested the breach was mostly contained. That turned out to be overly optimistic. While the firm posted updates on its site as its services returned to service, the ShinyHunters group that attacked them continued to issue threats to leak data from thousands of schools and millions of students. On May 7, in the middle of Finals week at many schools

Read the Post »

May 12, 2026

News

Adversaries Leverage AI for Vulnerability Exploitation, Augmented Operations, and Initial Access

From the Google Threat Intelligence Group’s Executive Summary: Read more at Google.

Read the Post »

May 11, 2026

Data Breach News

Canvas restored after cyberattack disrupted access for schools

There has been yet another development in the hack-and-leak attack on edtech giant Instructure, which was targeted by the ShinyHunters gang in April. When Instructure didn’t pay the gang’s ransom demands to delete the data, ShinyHunters attacked them again, defacing Canvas login pages with a note from ShinyHunters to schools. CNN reports: An apparent cyberattack shut down an education platform used by universities and K-12 schools across the US Thursday, depriving students and teachers of essential classroom materials – at a time when

Read the Post »

May 8, 2026

Vendor News

Microsoft Defender false positive goof throws companies into panic

The Eastern Herald reports: A critical error in Microsoft’s flagship security platform has sent shockwaves across the global cybersecurity community, after Microsoft Defender wrongly flags DigiCert certs as Trojan, triggering widespread panic among enterprises and system administrators. The issue emerged in early May 2026, when a faulty security intelligence update caused Defender to misidentify trusted DigiCert root certificates as malware. The detection, labeled Trojan:Win32/Cerdigent.A!dha, rapidly spread across Windows systems worldwide, leading to mass alerts and automated remediation actions. What made the incident

Read the Post »

May 5, 2026

Education Sector

Edtech Firm Instructure Updates Data Breach Status While ShinyHunters Threatens Leak

Security Week reports that Instructure is the latest edtech firm to fall prey to hackers. Based in Salt Lake City, Utah, the edtech firm is best known for Canvas, one of the most widely used learning platforms across educational institutions and other organizations. Disclosed on April 30, the cyberattack was blamed for “disruption to tools relying on API keys” and was largely addressed by Sunday, May 3, when access to the Canvas Data 2 platform was restored. On May 1,

Read the Post »

May 4, 2026

Data Breach News

Canvas restored after cyberattack disrupted access for schools

There has been yet another development in the hack-and-leak attack on edtech giant Instructure, which was targeted by the ShinyHunters gang in April.

May 8, 2026

Vimeo confirms breach via third-party vendor impacts 119K users

Hackers stole data of 119,000 Vimeo users in April. The breach, linked to a third‑party vendor, exposed personal details. Security

May 6, 2026

Facebook hacker puts Florida woman’s face on fake hospital photo

By now, many, if not all, people are likely to be leery of text messages or voicemails claiming to be

May 4, 2026

Insurance News

Act-of-War Clauses Cloud Cyber Insurance Coverage

Does it matter whether President Trump calls the situation with Iran a “war” or an “excursion” or something else if

April 8, 2026

Federal Court Refuses to Slice Up CiCi’s Cyber Extortion Coverage

From the Hunton Insurance Recovery Blog: In the rarely litigated space of cyber insurance, the Northern District of Texas issued

February 28, 2026

Vendors News

Vimeo confirms breach via third-party vendor impacts 119K users

Hackers stole data of 119,000 Vimeo users in April. The breach, linked to a third‑party vendor, exposed personal details. Security

May 6, 2026

New York, NY

55°

Cloudy

5:40 am8:04 pm EDT

Feels like: 55°F
Wind: 3mph W
Humidity: 70%
Pressure: 30.04"Hg
UV index: 0

LATEST NEWS ON HACKING, CYBER SECURITY & DATA BREACH

LEGAL AND REGULATORY NEWS

Bain Capital Potentially on Hook for PowerSchool Data Breach

A client alert from Womble Bond Dickinson (US) discusses what it describes as a first-of-its-kind ruling: a California court did

May 1, 2026

Responding to a Data Breach: How to Preserve the Attorney-Client Privilege

This client alert is based on a longer article Patrick Emerson McCormick wrote for the Conference on Consumer Finance Law Quarterly

April 29, 2026

Alleged Chinese state hacker involved in Silk Typhoon extradited to U.S.

The Record reports: A Chinese national accused of being a member of a state-backed hacking group has been extradited to

April 28, 2026

Old Laws, New Tricks: Connecticut Laws Apply to Artificial Intelligence

The law firm of Squire Patton Boggs writes: Connecticut Attorney General William Tong recently issued an advisory memorandum (“Advisory”) to all “State

April 17, 2026

California businesses have new cybersecurity obligations

Comply or risk class-action litigation? IAPP explains: Last year, the California Privacy Protection Agency adopted a major new rule requiring certain businesses

April 16, 2026

Consumer Alerts

Facebook hacker puts Florida woman’s face on fake hospital photo

New York Yankees and Rangers fans at high risk of password breach; millions hacked, study reveals

Miscellaneous News

Intoxalock Cyberattack Prevented Some Drivers Required to Take Breathalyzer Tests from Starting Their Cars

DysruptionHub reports: A cybersecurity event has disrupted calibration systems at Des Moines, Iowa-based Intoxalock since March 14, leaving some court-ordered

March 20, 2026

Discord Age Verification Faces Backlash — Could Your ID Leak Like Before?

The International Business Times reports: Discord is preparing to enforce a global age verification system from early March that will

February 10, 2026

Data Breach News

Canvas restored after cyberattack disrupted access for schools

There has been yet another development in the hack-and-leak attack on edtech giant Instructure, which was targeted by the ShinyHunters gang in April.

May 8, 2026

Vimeo confirms breach via third-party vendor impacts 119K users

Hackers stole data of 119,000 Vimeo users in April. The breach, linked to a third‑party vendor, exposed personal details. Security

May 6, 2026

Facebook hacker puts Florida woman’s face on fake hospital photo

By now, many, if not all, people are likely to be leery of text messages or voicemails claiming to be

May 4, 2026

Insurance News

Act-of-War Clauses Cloud Cyber Insurance Coverage

Does it matter whether President Trump calls the situation with Iran a “war” or an “excursion” or something else if

April 8, 2026

Federal Court Refuses to Slice Up CiCi’s Cyber Extortion Coverage

From the Hunton Insurance Recovery Blog: In the rarely litigated space of cyber insurance, the Northern District of Texas issued

February 28, 2026

Vendors News

Vimeo confirms breach via third-party vendor impacts 119K users

Hackers stole data of 119,000 Vimeo users in April. The breach, linked to a third‑party vendor, exposed personal details. Security

May 6, 2026

New York, NY

55°

Cloudy

5:40 am8:04 pm EDT

Feels like: 55°F
Wind: 3mph W
Humidity: 70%
Pressure: 30.04"Hg
UV index: 0