Many of you have seen the headlines about the breach at Instructure, the company behind the Canvas learning management system used by 41% of higher education institutions in North America and thousands of K-12 districts. Here's what's known, and what your institution should be doing about it.
Topics: Incident Response, Ransomware, Compliance & Governance, AI & Emerging Technology
Shadow AI: The Risk Your Security Tools Can’t See
What shadow AI really looks like inside a normal workday
Shadow AI is any AI tool, feature, or integration your organization uses without clear approval, security review, or monitoring, but it still touches real business data. It’s the AI sidebar in your CRM, the browser extension a manager added, or an “assist” feature turned on by a vendor.
Topics: Healthcare, Compliance & Governance, AI & Emerging Technology
The 10-Petabyte Heist: The Recent China Supercomputing Breach Means
If you've been in cybersecurity long enough, you develop a reflex: dramatic claims usually aren't true. So when a tweet started circulating in early April 2026 alleging 10 petabytes of data had been stolen from China's National Supercomputing Center in Tianjin—including defense documents and missile research—my reaction was the same as most practitioners: prove it. This brings us to the crucial question: did it really happen?
Topics: Data Protection & Privacy, Penetration Testing, Monitoring & Detection, Compliance & Governance
Lessons from Strkyer: Dual Controls, Multi-Admin Approval & Recent Cyberattacks
Written by Willie Zhang and Keegan Paisley
On March 11th, medical technology manufacturer Stryker disclosed a cybersecurity incident affecting its internal IT systems. The attack caused a global disruption to the company's Microsoft environment. Stryker activated its incident response process and brought in outside cybersecurity specialists.
Topics: Incident Response, Healthcare, Compliance & Governance
Recently, it was announced that Katie Arrington was promoted to acting CIO for the Department of Defense. With the efforts for CMMC being spearheaded by her and the task force she was a part of, many have taken to social media to speculate on the decay of the program. Despite this, most assessors and organizations are still expecting the CMMC program to maintain its course.
Topics: Compliance & Governance
