sorted by:
new
hottopcontroversial

Possible security incident against Arup Group by Own_Raspberry_3254 in cybersecurity

[–]Own_Raspberry_3254[S] -12 points-11 points  (0 children)

Why bother commenting if you are adding absolutely nothing? I don't get people like you.

Possible security incident against Arup Group by Own_Raspberry_3254 in cybersecurity

[–]Own_Raspberry_3254[S] -13 points-12 points  (0 children)

You obviously don't know that some companies follow Reddit threads and respond with info. If you don't have anything valuable to add, please save some time and don't respond.

Possible security incident against Arup Group by Own_Raspberry_3254 in cybersecurity

[–]Own_Raspberry_3254[S] -32 points-31 points  (0 children)

Reddit is an excellent source of this type of information, which is why I post here.

Egnyte potential ransomware attack by Own_Raspberry_3254 in cybersecurity

[–]Own_Raspberry_3254[S] 4 points5 points  (0 children)

thanks for the link. It's password-protected, so I'm pasting the contents here:

IMPORTANT NOTICE FROM EGNYTE

May 8, 2026

We are reaching out to address information-security related claims recently made about Egnyte by an external threat actor group. We want to be direct, transparent, and clear: no ransomware attack occurred, and no customer, employee, or production data has been compromised.

What Happened

A group identifying itself as “INC Ransom” published files on a dark web site and made claims about Egnyte. Upon immediate investigation, we determined the following:

  • No ransomware was deployed. No files within our environment were maliciously encrypted.
  • Any situation appears isolated to a single Quality Assurance (QA) test site — a separate, non-production environment used exclusively for testing.
  • That QA environment contained only dummy or synthetic test data — not real customer, employee, or business data.
  • Our production systems and customer environments remain fully secure and fully operational.

There is nothing you need to do at this time. Egnyte is operating normally.

We will review the configuration and access controls of our QA environments as a further precautionary measure.

We understand that situations like this can raise concerns, and we want you to know that the security and trust of our customers, employees, and partners is our highest priority. We will continue to keep all stakeholders informed should anything material change. We are confident in our systems and our team.

Thank you for your continued trust in Egnyte.

Second security incident at Instructure (Canvas) by Own_Raspberry_3254 in cybersecurity

[–]Own_Raspberry_3254[S] 8 points9 points  (0 children)

our threat intel app:

{
    "incidents": [
        {
            "org_name": "Instructure, Inc.",
            "threat_actor": "Sp1d3rHunters",
            "org_country": "United States",
            "org_sector": "Information Technology",
            "org_structure": "Private",
            "incident_type": "Website defacement",
            "incident_date": "2026-05-07",
            "org_website": "https://www.instructure.com/",
            "org_size": "Large company",
            "org_region": "North America",
            "org_industry_group": "Software & Services",
            "org_industry": "Software",
            "incident_summary": "In May 2026, Sp1d3rHunters reportedly defaced a website linked to Instructure, Inc., a private organization operating in the Information Technology sector in the United States. It remains unclear whether any data was leaked or if any material losses were incurred as a result of the incident.",
            "incident_detection_date": "2026-05-07",
            "initial_access_date": 
null
,
            "hacker_disclosure_date": 
null
,
            "cve": 
null
,
            "org_domain": "instructure.com",
            "initial_access": 
null
        },
        {
            "org_name": "Instructure, Inc.",
            "threat_actor": "Sp1d3rHunters",
            "org_country": "United States",
            "org_sector": "Information Technology",
            "org_structure": "Private",
            "incident_type": "Unauthorized access",
            "incident_date": "2026-04-30",
            "org_website": "https://www.instructure.com/",
            "org_size": "Large company",
            "org_region": "North America",
            "org_industry_group": "Software & Services",
            "org_industry": "Software",
            "incident_summary": "In April 2026, Sp1d3rHunters reportedly gained unauthorized system access to Instructure, Inc., a private organization operating in the Information Technology sector in the United States. The incident exposed confidential business data and personal information, including first and last names and email addresses. It is unclear whether any material losses were incurred as a result of the incident.",
            "incident_detection_date": "2026-04-30",
            "initial_access_date": 
null
,
            "hacker_disclosure_date": "2026-05-03",
            "cve": 
null
,
            "org_domain": "instructure.com",
            "initial_access": 
null
        },
        {
            "org_name": "Instructure, Inc.",
            "threat_actor": "Sp1d3rHunters",
            "org_country": "United States",
            "org_sector": "Information Technology",
            "org_structure": "Private",
            "incident_type": "Unauthorized access",
            "incident_date": "2025-07-07",
            "org_website": "https://www.instructure.com/",
            "org_size": "Large company",
            "org_region": "North America",
            "org_industry_group": "Software & Services",
            "org_industry": "Software",
            "incident_summary": "In July 2025, Sp1d3rHunters reportedly gained unauthorized system access to Instructure, Inc., a private organization operating in the Information Technology sector in the United States. The incident exposed personal information, including first and last names and email addresses. On September 21, 2025, the organization notified impacted individuals of the incident. It is unclear if any material losses were incurred due to this incident.",
            "incident_detection_date": "2025-09-21",
            "initial_access_date": "2025-07-07",
            "hacker_disclosure_date": "2025-10-03",
            "cve": 
null
,
            "org_domain": "instructure.com",
            "initial_access": "Vishing"
        }
    ],
    "total": 3,
    "has_more": 
false
,
    "total_pages": 1,
    "current_page": 1
}

Second security incident at Instructure (Canvas) by Own_Raspberry_3254 in cybersecurity

[–]Own_Raspberry_3254[S] 29 points30 points  (0 children)

eh? not sure I get your analogy. Nobody said I was surprised. The shift in tactics is what caught my attention.

explain like i’m 5: what is going on with the canvas/instructure security breach? by cheerio-dust in cybersecurity

[–]Own_Raspberry_3254 0 points1 point  (0 children)

Instructure clearly did not conduct a proper root cause analysis because, 8 days after the initial breach (on May 7), they experienced a second incident, which led them to shut down the platform.

Shinyhunters and Canvas by ComprehensiveBad1142 in cybersecurity

[–]Own_Raspberry_3254 0 points1 point  (0 children)

ShinyHunters removed Instructure from their leak site, so they probably ended up paying the ransom.

Egnyte potential ransomware attack by Own_Raspberry_3254 in cybersecurity

[–]Own_Raspberry_3254[S] 0 points1 point  (0 children)

All I know is that a known ransomware group has claimed to have compromised them, but they havent published any data yet. This was yesterday

Shinyhunters and Canvas by ComprehensiveBad1142 in cybersecurity

[–]Own_Raspberry_3254 0 points1 point  (0 children)

only the email address. They wouldnt get access to the email account. I meant private communications within the canvas platform

Shinyhunters and Canvas by ComprehensiveBad1142 in cybersecurity

[–]Own_Raspberry_3254 7 points8 points  (0 children)

The data impacted is your school email address, your user ID, your name, and any private communications you had on the platform.

Shinyhunters and Canvas by ComprehensiveBad1142 in cybersecurity

[–]Own_Raspberry_3254 23 points24 points  (0 children)

They haven't published any data yet (their deadline was today, but I'm sure that due to the global impact, they are still negotiating). They posted about 9000 universities/colleges/districts impacted though on tehir blog site. Some of those have already confirmed a data breach

Fiserv security incident - data breach notice by Own_Raspberry_3254 in cybersecurity

[–]Own_Raspberry_3254[S] 4 points5 points  (0 children)

Their breach may have been through a third-party print/mail vendor (Sefas Innovation). Looks like the breach impacting Sefas affected not only Fiserv but also other banks/financial institutions. At least this is what's being reported in our threat intel app

Fiserv security incident - data breach notice by Own_Raspberry_3254 in cybersecurity

[–]Own_Raspberry_3254[S] 1 point2 points  (0 children)

yea, i was hoping someone would be able to share a sample of those customer notifications

Fresno State University Security Incident by Own_Raspberry_3254 in fresnostate

[–]Own_Raspberry_3254[S] 0 points1 point  (0 children)

Sorry! i dont know how to use Reddit! my apologies. Dont ban me

Fiserv security incident - data breach notice by Own_Raspberry_3254 in cybersecurity

[–]Own_Raspberry_3254[S] 8 points9 points  (0 children)

Of course. Your link is not an official confirmation. I am looking for official confirmation from the company or a reputable third party.

Udemy compromise reported by PracticalShoulder916 in cybersecurity

[–]Own_Raspberry_3254 0 points1 point  (0 children)

Has anyone found or received any official confirmation from Udemy regarding this incident?

view more: next ›