Cybersecurity Alert: Major Breaches, AI Threats, and Critical Patches – Week of May 11

The week of May 11 brought a wave of significant cybersecurity incidents, from a massive data breach at edtech giant Instructure to sophisticated AI-targeted attacks. We've broken down the key stories into questions and answers to help you understand the risks and necessary responses.

What happened in the Instructure data breach and how did it impact schools?

The breach at Instructure, the company behind the Canvas learning platform, exposed student and staff records along with private messages through unauthorized access to their cloud-hosted environment. The ShinyHunters group escalated the attack by defacing hundreds of school login portals with ransom messages. This incident highlights the growing threat to educational institutions, where sensitive academic and personal data can be leveraged for extortion. Schools using Canvas should immediately review access controls, enable multi-factor authentication, and monitor for suspicious activity. The breach underscores the need for robust cloud security measures in the education sector.

How did the Zara breach expose customer data, and what was the source?

The breach at Zara, a flagship brand of Inditex, originated from a third-party technology provider. Attackers gained unauthorized access, exposing 197,400 unique email addresses, order IDs, purchase history, and customer support tickets. While payment card details were not compromised, the exposed information can be used for targeted phishing or identity theft. This incident emphasizes the risks associated with third-party integrations and the importance of vetting vendor security. Customers who shopped at Zara during the relevant period should be cautious of unsolicited communications and monitor their accounts for unusual activity.

What did the Mediaworks attack reveal about internal corporate data exposure?

Hungarian media company Mediaworks fell victim to a data-theft extortion attack perpetrated by the group World Leaks. The attackers posted 8.5TB of internal files online, including payroll records, contracts, financial documents, and internal communications. This massive exposure demonstrates how attackers can weaponize sensitive corporate data for extortion and reputation damage. Mediaworks confirmed the intrusion but has not disclosed ransom demands. Organizations should prioritize data classification, limit access to sensitive files, and implement robust monitoring to detect unusual data transfers.

What customer information was compromised in the Skoda online shop incident?

Czech automaker Škoda experienced a security incident affecting its online shop after attackers exploited a software flaw to gain unauthorized access. Exposed data may include names, contact details, order history, and login credentials. However, the company confirmed that passwords and payment card data were not affected. Customers are advised to reset passwords for their Škoda accounts and remain vigilant for phishing attempts. This incident highlights the importance of timely patching and secure coding practices to prevent exploitation of known vulnerabilities in e-commerce platforms.

How did the Cline AI coding agent vulnerability allow workspace hijacking?

Researchers uncovered a critical WebSocket hijacking vulnerability in Cline's local Kanban server, affecting the open-source AI coding agent. Rated CVSS 9.7 and patched in version 0.1.66, the flaw allowed any website a developer visited to exfiltrate workspace data and inject arbitrary commands into the AI agent. This meant that simply browsing a malicious site could compromise the entire development environment. Developers using Cline should update to the latest version immediately and consider running the agent in isolated environments to mitigate similar risks.

What threat did the Anthropic Claude browser extension flaw pose to users?

Security researchers found a flaw in the Claude in Chrome extension that allowed other browser extensions to hijack the AI agent. Malicious prompts could trigger unauthorized actions and access sensitive browser-connected data. This vulnerability expands the attack surface of AI assistants, as they can be leveraged to exfiltrate browsing history, cookies, or credentials. Users should review their installed extensions, remove unnecessary ones, and ensure Claude is kept up to date. Extension developers must implement strict permission boundaries to prevent cross-extension attacks.

How did the InstallFix campaign use fake Claude AI ads to infect systems?

The InstallFix campaign used fake Claude AI installer pages promoted through Google Ads to trick Windows and macOS users into running malicious commands. Victims were directed to download a bogus installer that launched multi-stage malware, stole browser data, disabled protections, and established persistence through scheduled tasks. This social engineering attack leverages the popularity of AI tools to spread malware. Users should only download software from official sources and avoid clicking on ads for popular applications. Organizations should educate employees about such threats and deploy endpoint detection solutions.

What critical vulnerabilities were patched in MOVEit and Ivanti products?

Progress alerted customers to two critical vulnerabilities in MOVEit Automation: CVE-2026-4670, an authentication bypass allowing unauthorized access (CVSS critical), and CVE-2026-5174, a privilege escalation flaw. Fixes are available in versions 2025.1.5, 2025.0.9, and 2024.1.8. Separately, Ivanti fixed CVE-2026-6973, a high-severity zero-day in Endpoint Manager Mobile (EPMM 12.8.0.0 and earlier) that allows remote code execution by attackers with admin permissions. Hundreds of appliances are potentially affected. Organizations using these products should apply patches immediately and review access controls to mitigate exploitation risks.