Cybersecurity News May 12, 2026: Canvas Hack, WannaCry Legacy, OpenAI AI Models Enhance Security

CybersecTuesday, May 12, 2026

50 articles analyzed by AI / 268 total

Key points

0:00 / 0:00

•In May 2026, an extensive cybersecurity breach on the Canvas educational platform revealed vulnerabilities impacting numerous universities in California, compromising student data and educational infrastructure security. The company responded by negotiating with attackers to delete stolen student data, highlighting the evolving tactics in educational sector cybersecurity incidents.[Palo Alto Online][BBC Cybersecurity News]
•The 2017 WannaCry ransomware attack infected more than 200,000 computers across 150 countries, causing billions in global damages and serving as a pivotal event in reshaping cybersecurity defense strategies worldwide. This historic event continues to influence policy and security protocols across governments and industries.[Security Affairs][VOV World]
•Emerging threats such as ODINI malware, which can exploit CPU magnetic emissions to breach air-gapped, Faraday-shielded systems, demonstrate the increasing sophistication of attacks targeting even highly secured environments. This technique, reported in 2026, challenges traditional assumptions about physical isolation as a security measure.[CyberSecurityNews]
•Ransomware operations are experiencing internal disruptions, as evidenced by the Gentleman ransomware group's own data breach in 2026, exposing ongoing vulnerabilities within cybercriminal networks and intensifying risks for victims and law enforcement alike.[Cybersecurity Insiders]
•OpenAI has played a notable role in advancing AI-driven cybersecurity, granting the European Commission access to a new AI model in May 2026 to address frontier AI cybersecurity risks. Additionally, OpenAI released the Daybreak AI platform aimed at enhancing threat detection and response capabilities, reflecting AI's expanding influence on security measures.[IAPP][qz.com][BankInfoSecurity]
•Regulatory bodies are intensifying cybersecurity enforcement; the New York Department of Financial Services in May 2026 imposed a $2.25 million settlement targeting healthcare organizations to improve protection of sensitive data, underscoring increased government scrutiny and compliance demands in critical sectors.[Crowell & Moring LLP][Crowell & Moring LLP]
•Supply chain security saw critical challenges in 2026 when RubyGems temporarily halted new registrations after hundreds of malicious packages infiltrated the ecosystem, causing disruptions in software development workflows and raising awareness of package repository security vulnerabilities.[The Hacker News RSS]
•In May 2026, Google's Threat Intelligence Group thwarted a potential mass cyberattack by detecting an AI-assisted zero-day exploit capable of bypassing two-factor authentication in a widely used open-source web administration tool, showcasing advanced threat detection critical for protecting authentication mechanisms.[LinkedIn][LinkedIn]
•New variants of TrickMo malware using TON-based command-and-control systems along with SOCKS5 proxies were identified in early 2026, specifically targeting Android users' banking and cryptocurrency wallets. This highlights ongoing innovation in mobile malware tactics and challenges for financial cybersecurity.[The Hacker News RSS]
•Critical vulnerabilities continue to emerge in widely-used systems, as seen in May 2026 when security researchers found an unauthenticated remote code execution vulnerability (CVE-2026-45185) in the Exim mail server. This discovery demands urgent attention to patching to prevent exploitation in email infrastructure worldwide.[Reddit /r/netsec]

Relevant articles

Canvas hack exposes cybersecurity flaws across California’s universities - Palo Alto Online

9/10

A hack on the Canvas educational platform in May 2026 exposed cybersecurity vulnerabilities affecting multiple California universities, underscoring significant data security risks in higher education institutions across the state.

Palo Alto Online · 5/12/2026, 12:00:00 PM

WannaCry, the ransomware attack that changed the history of cybersecurity - Security Affairs

9/10

The WannaCry ransomware attack in 2017 infected over 200,000 computers across 150 countries, causing billions in damages worldwide. This attack is recognized for drastically changing global cybersecurity protocols and defense strategies.

Security Affairs · 5/12/2026, 9:37:10 AM

ODINI Malware Uses CPU Magnetic Emissions to Breach Faraday-Shielded Air-Gapped Computers - CyberSecurityNews

9/10

ODINI malware exploits CPU magnetic emissions to breach Faraday-shielded, air-gapped computers, representing a novel and sophisticated cyberattack vector first reported in May 2026, posing new threats to highly secure systems.

CyberSecurityNews · 5/12/2026, 7:29:53 AM

Gentleman Ransomware suffers Data Breach - Cybersecurity Insiders

9/10

The Gentleman ransomware group suffered a data breach in 2026, exposing vulnerabilities within ransomware operations and putting victims at further risk, reflecting ongoing instability and risks in cybercrime ecosystems.

Cybersecurity Insiders · 5/12/2026, 5:44:26 AM

OpenAI grants European Commission access to new model as EU considers frontier AI cybersecurity risks - IAPP

8/10

In May 2026, OpenAI granted the European Commission access to a new AI model amid EU deliberations on frontier AI cybersecurity risks, signaling governmental focus on managing AI's security implications at a continental scale.

IAPP · 5/12/2026, 5:00:59 PM

NYDFS Ramps Up Health Care Cybersecurity Enforcement With $2.25 Million Settlement - Crowell & Moring LLP

8/10

The New York Department of Financial Services imposed a $2.25 million settlement in May 2026 to strengthen healthcare cybersecurity enforcement, reflecting increased regulatory efforts to ensure compliance and protect sensitive medical data.

Crowell & Moring LLP · 5/12/2026, 8:03:45 PM

Dead.Letter (CVE-2026-45185) How XBOW found an unauthenticated RCE on Exim

8/10

Cybersecurity researchers at XBOW discovered a critical unauthenticated remote code execution vulnerability (CVE-2026-45185) in the widely used Exim mail server in May 2026, highlighting a severe security risk requiring urgent patching.

Reddit /r/netsec · 5/12/2026, 5:41:33 PM

RubyGems Suspends New Signups After Hundreds of Malicious Packages Are Uploaded

8/10

RubyGems suspended new user registrations in May 2026 after hundreds of malicious packages were uploaded to its repository, an incident that compromised supply chain security and impacted the developer community substantially.

The Hacker News RSS · 5/12/2026, 2:47:00 PM

Google says it may have stopped a mass cyberattack after its Threat Intelligence Group identified a zero-day exploit, built with AI assistance, that was capable of bypassing two-factor authentication in a popular open-source web administration tool. The compa - LinkedIn

8/10

Google's Threat Intelligence Group identified a zero-day exploit created with AI that could bypass two-factor authentication in a popular open-source web administration tool, potentially preventing a large-scale cyberattack in 2026.

LinkedIn · 5/12/2026, 8:50:01 AM

New TrickMo Variant Uses TON C2 and SOCKS5 to Create Android Network Pivots

8/10

Researchers detected a new TrickMo malware variant in early 2026 that uses TON command-and-control infrastructure and SOCKS5 proxies to create network pivots on Android devices, targeting banking and cryptocurrency wallets.

The Hacker News RSS · 5/12/2026, 12:50:00 PM