Instructure confirms hackers used Canvas flaw to deface portals

Education technology giant Instructure has confirmed that a security vulnerability allowed hackers to modify Canvas login ...

Instructure reaches 'agreement' with ShinyHunters to stop data leak

Instructure, the edtech giant behind the widely popular Canvas learning management system (LMS), has reached an "agreement" ...
The Hacker News

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution

CVE-2026-44009 (CVSS score: 9.8) - A vulnerability that allows sandbox escape via a null proto exception and permits an ...
The Hacker News

⚡ Weekly Recap: Linux Rootkit, macOS Crypto Stealer, WebSocket Skimmers and More

Weekly cybersecurity recap covering zero-days, malware, phishing, supply chain attacks, cloud threats, AI security risks, and ...
Security Boulevard

12 Best Auth0 Alternatives for Passwordless Authentication in 2026

Compare 12 Auth0 alternatives for passwordless auth in 2026: pricing, key differentiators, and honest limitations from a security analyst." seo_keywords: "auth0 alternatives, passwordless ...
CSO Online

May Patch Tuesday roundup: Critical holes in Windows Netlogon, DNS, and SAP S/4HANA

Admins with Dynamics 365 on-prem should also take note of a “severe” vulnerability that allows remote code execution.
KESQ News

Break-in devastates Palm Springs bike shop

PALM SPRINGS, Calif. (KESQ) - A break-in at Alcorn Adaptive Bikes has left owner Jerry Alcorn and his family facing emotional and financial hardship as they work to recover from the damage and losses.
Security Boulevard

Are Magic Links Secure: A Technical Deep Dive Into Email Based Authentication

Are magic links secure? A security analyst breaks down token entropy, replay protection, expiry, device binding, and email compromise risks for MojoAuth users.