Canvas Breach Exposes 275M Accounts | AI Targets Water Systems | GM OnStar Settlement

Canvas Breach Exposes 275M Accounts | AI Targets Water Systems | GM OnStar Settlement

A massive cybersecurity week.

On this episode of Cybersecurity Today, David Shipley breaks down the reported breach of Instructure's Canvas learning platform, where attacks linked to the ShinyHunters extortion group may have exposed data tied to up to 275 million user accounts across more than 9,000 educational institutions. The incident disrupted access, delayed exams, and forced Instructure to disable its "Free for Teacher" program after attackers allegedly used it to post extortion messages.

Also in this episode: the Gentlemen ransomware group suffers a major internal leak, exposing affiliate chats, tooling, victim data, and operational details — a rare look inside a live ransomware operation.

Then, General Motors agrees to a $12.75 million California settlement over allegations involving OnStar-linked driver data collection and sharing, raising fresh questions about privacy in connected vehicles.

And finally: security researchers report what appears to be the first documented AI-assisted operational technology (OT) cyberattack attempt targeting a water utility in Monterrey, Mexico. The attempt failed to reach industrial control systems, but combined with confirmed attacks on water infrastructure in Poland, it signals a worrying shift in critical infrastructure threats.

If you work in cybersecurity, IT, infrastructure, education, or privacy, this episode matters.

Chapters
00:00 Top Headlines Rundown
00:41 Canvas Mega Breach
02:44 ShinyHunters Background
03:26 Ransom Pressure Fallout
04:25 Gentlemen Ransomware Leak
05:18 Inside the Data Dump
06:18 GM OnStar Privacy Settlement
08:17 What Drivers Should Know
09:39 AI Meets OT Attacks
11:52 Monterrey Water Near Miss
13:29 Poland Water Systems Hit
15:07 Defending Critical Infrastructure
16:29 Wrap Up And Thanks

#Cybersecurity #Canvas #ShinyHunters #Ransomware #OnStar #GeneralMotors #DataBreach #CriticalInfrastructure #WaterUtility #OperationalTechnology #ICS #CyberAttack #Privacy #DavidShipley #CybersecurityToday

Tämä jakso on lisätty Podme-palveluun avoimen RSS-syötteen kautta eikä se ole Podmen omaa tuotantoa. Siksi jakso saattaa sisältää mainontaa.

Jaksot(100)

ShareFile explained, healthcare in critical cyber condition and click fix tops malware charts

ShareFile explained, healthcare in critical cyber condition and click fix tops malware charts

ShareFile emergency explained, a year of Salesforce breaches examined, healthcare cybersecurity in critical condition and click fix goes number one for malware.  David Shipley covers Progress Software...

15 Heinä 13min

ShareFile shutdown, double-agent ransomware negotiator sentenced, Helix uses vishing

ShareFile shutdown, double-agent ransomware negotiator sentenced, Helix uses vishing

ShareFile shutdown order, a double-agent ransomware negotiator sentenced, and vishing crews raid SharePoint   Progress Software ordered customers running ShareFile Storage Zone Controllers to shut dow...

13 Heinä 10min

AI Export Controls, FortiBleed, Third-Party Breaches & CISO Burnout | Cybersecurity Today Panel

AI Export Controls, FortiBleed, Third-Party Breaches & CISO Burnout | Cybersecurity Today Panel

Can governments decide who gets access to advanced AI models? Are third-party breaches becoming impossible to control? And why are so many CISOs reaching burnout? In this special Cybersecurity Today M...

11 Heinä 1h 1min

A questionable breach, bad routers at home and at work and AI gives defenders a win

A questionable breach, bad routers at home and at work and AI gives defenders a win

This episode covers a hacker's claim of stealing 35GB from Accenture—including source code, Azure personal access tokens, RSA keys, and SSH keys—while Accenture calls it an isolated, remediated matter...

10 Heinä 12min

Scattered Spider squashed, Rogue Agent AI flaw, 16 year-old Linux bug and new phish hunts marketers

Scattered Spider squashed, Rogue Agent AI flaw, 16 year-old Linux bug and new phish hunts marketers

Cybersecurity Today host David Shipley covers how a newly unsealed U.S. complaint tied an alleged Scattered Spider member to a luxury retailer intrusion using a persistent Windows device ID, with pros...

8 Heinä 13min

AI-Run Ransomware, New Oracle Critical Flaw, NetNut busted

AI-Run Ransomware, New Oracle Critical Flaw, NetNut busted

AI-Run Ransomware, New Oracle 9.8 Flaw Exploited, NetNut Proxy Network Busted, and Pegasus Hits EU Spyware Investigator   This episode covers researchers' report of "Jade Puffer," the first ransomware...

6 Heinä 14min

Teams battles bots, Bioshocking AI browser guardrails, Fortibleed fuels ransomware

Teams battles bots, Bioshocking AI browser guardrails, Fortibleed fuels ransomware

Teams cracks down on meeting bots, AI guardrails get bypassed, FortiBleed fuels ransomware, and Nissan confirms PeopleSoft breach   Microsoft rolls out a new Teams admin policy, "Manage External Bots ...

3 Heinä 10min

US puts $10m bounty on Russian hackers, new phish hunts hotels, Supreme Court reins in geofencing

US puts $10m bounty on Russian hackers, new phish hunts hotels, Supreme Court reins in geofencing

US Puts $10M Bounty on Russian Hackers, Supreme Court Limits Geofence Warrants, New phishing campaign targets hotels, AI Coding Agents Tricked into Malware and Canada's Electronic Spies Go After Ranso...

1 Heinä 11min

Suosittua kategoriassa Politiikka ja uutiset

aikalisa
uutiscast
ootsa-kuullut-tasta-2
rss-ootsa-kuullut-tasta
rss-seksicast
rss-vaalirankkurit-podcast
rss-podme-livebox
otetaan-yhdet
politiikan-puskaradio
tervo-halme
aihe
linda-maria
rikosmyytit
mtv-uutiset-polloraati
rss-aijat-hopottaa-podcast
rss-merja-mahkan-rahat
rss-raha-talous-ja-politiikka
rss-tekoalyfoorumi
rss-asiastudio
rss-girls-finish-f1rst