Instructure strikes deal with hackers who breached it twice

The maker of the Canvas school software said it “reached an agreement” with the hackers, but provided no guarantees that the hackers would not release the data or keep their word.

Hackers deface school login pages after claiming another Instructure hack

The cybercrime group ShinyHunters claimed to have hacked Instructure again, defacing the login pages of several Instructure customer schools with an extortion message.

AI evaluation startup Braintrust confirms breach, tells every customer to rotate sensitive keys

Braintrust, a startup that makes an “operating system for engineers building AI software,” notified customers that hackers broke into one of its Amazon cloud environments, and is asking customers to rotate their API keys.

Hackers steal students’ data during breach at education tech giant Instructure

The data breach at education tech giant Instructure includes students’ private data, according to a sample of the allegedly stolen data seen by TechCrunch.

Dental practice software maker fixes bug that exposed patients’ medical records

The security bug is now fixed, but the patient who found it said it was challenging to alert the software company about the issue.

Critical infrastructure giant Itron says it was hacked

The American technology giant provides water and energy monitoring and utility meters to hundreds of millions of homes and businesses.

Vercel says some of its customers’ data was stolen prior to its recent hack

The app and website hosting company has found evidence of a second compromise of customer accounts after expanding its initial investigation following a breach in early April.

Cosmetics giant Rituals confirms data breach of customer membership records

The cosmetics retailer, which counts 41 million customers in its membership data, declined to provide an accurate total number of customers affected.

App host Vercel says it was hacked and customer data stolen

Vercel blamed its breach on an earlier hack at Context AI, which allowed hackers to hijack a Vercel employee’s account to steal customer data.

Fashion retailer Express left customers’ personal data and order details exposed to the internet

Retail giant Express was publicly spilling customer information to the open web. The bug is now fixed after TechCrunch alerted Express, but the company would not say if it plans to notify customers.