Canvas Breach Exposes 275M Accounts | AI Targets Water Systems | GM OnStar Settlement

Canvas Breach Exposes 275M Accounts | AI Targets Water Systems | GM OnStar Settlement

Author: Jim Love May 11, 2026 Duration: 16:55
Cybersecurity Today
NewsTechnology

A massive cybersecurity week.

On this episode of Cybersecurity Today, David Shipley breaks down the reported breach of Instructure's Canvas learning platform, where attacks linked to the ShinyHunters extortion group may have exposed data tied to up to 275 million user accounts across more than 9,000 educational institutions. The incident disrupted access, delayed exams, and forced Instructure to disable its "Free for Teacher" program after attackers allegedly used it to post extortion messages.

Also in this episode: the Gentlemen ransomware group suffers a major internal leak, exposing affiliate chats, tooling, victim data, and operational details — a rare look inside a live ransomware operation.

Then, General Motors agrees to a $12.75 million California settlement over allegations involving OnStar-linked driver data collection and sharing, raising fresh questions about privacy in connected vehicles.

And finally: security researchers report what appears to be the first documented AI-assisted operational technology (OT) cyberattack attempt targeting a water utility in Monterrey, Mexico. The attempt failed to reach industrial control systems, but combined with confirmed attacks on water infrastructure in Poland, it signals a worrying shift in critical infrastructure threats.

If you work in cybersecurity, IT, infrastructure, education, or privacy, this episode matters.

Chapters
00:00 Top Headlines Rundown
00:41 Canvas Mega Breach
02:44 ShinyHunters Background
03:26 Ransom Pressure Fallout
04:25 Gentlemen Ransomware Leak
05:18 Inside the Data Dump
06:18 GM OnStar Privacy Settlement
08:17 What Drivers Should Know
09:39 AI Meets OT Attacks
11:52 Monterrey Water Near Miss
13:29 Poland Water Systems Hit
15:07 Defending Critical Infrastructure
16:29 Wrap Up And Thanks

#Cybersecurity #Canvas #ShinyHunters #Ransomware #OnStar #GeneralMotors #DataBreach #CriticalInfrastructure #WaterUtility #OperationalTechnology #ICS #CyberAttack #Privacy #DavidShipley #CybersecurityToday


Every morning, Jim Love sifts through the noise of the digital world to bring you a clear, concise briefing on what actually matters. Cybersecurity Today isn't about fearmongering; it's about practical awareness. You'll hear straightforward analysis of the most recent attacks targeting companies, from sophisticated ransomware campaigns to stealthy data theft. Jim breaks down the implications of major breach disclosures, explaining not just what was stolen, but how it happened and who is affected. The focus remains on actionable intelligence-concrete steps and strategic thinking that can help protect your organization's data and infrastructure. This daily podcast serves as an essential filter for IT professionals, business leaders, and anyone responsible for digital assets, transforming complex threats into understandable insights. Tune in for a grounded perspective on navigating an online landscape where the risks are constantly evolving, and the need for clear, timely information has never been greater.
Author: Language: English Episodes: 100

Official website RSS
linkedin
Cybersecurity Today
Podcast Episodes
Connected Cars Are Rolling Spy Networks — And They Can Be Hacked [not-audio_url] [/not-audio_url]

Duration: 44:51
Connected cars are no longer just vehicles — they are rolling networks of sensors, cameras, microphones, and constant data transmission. In this Cybersecurity Today Weekend Edition, David Shipley is joined by former CSIS…
WhatsApp Encryption Under Fire After Probe Shut Down [not-audio_url] [/not-audio_url]

Duration: 10:06
A U.S. federal investigation into WhatsApp encryption was shut down before reaching a conclusion — after an internal claim suggested Meta systems may access message content in ways that conflict with public descriptions.…

12345...10»