Security blog
Explore insights, industry trends, and practical tips that have the cybersecurity industry buzzing.
Three Active Microsoft 365 Phishing Campaigns Targeting Schools and Government Agencies
School districts, universities, and state and local government agencies share something that makes them high-value targets for threat actors: large,…
Read more
Critical Microsoft 365 Updates for K–12, Higher Education, and Government IT Teams — July 2026
Your monthly digest from Guardian 365: what’s changing in M365, what it means for your environment, and what to do…
Read moreThe Canvas Breach Reached Further Than You Think.
If your institution uses Canvas and Microsoft 365, the risk didn’t stop at Instructure. It’s sitting in your Entra ID…
Read more
Microsoft Defender for Endpoint Now Supports Legacy Windows — What K–12 Districts and Government Agencies Need to Know
Legacy Windows Is Still Running in Schools and Government — And Attackers Know It If your district or agency is…
Read more
Critical Microsoft 365 Changes Coming This Summer: What K–12, Higher Ed, and Government IT Teams Need to Know
If you manage Microsoft 365 for a school district, university, or government agency, the next 60 days come with some…
Read more
The Canvas LMS Breach Is a Wake-Up Call for Every School District and University Using Microsoft 365
In late April 2026, the ShinyHunters criminal group quietly slipped past the defenses of Instructure — the company behind Canvas…
Read more
Canvas LMS Breach: What Happened, What’s Resolved, and What Comes Next
Executive Summary: On May 1, 2026, Instructure confirmed a major breach of its Canvas LMS platform, attributed to the criminal extortion…
Read more
Canvas LMS Breach: What Microsoft 365 and Entra ID Administrators Need to Know
The education technology community is responding to a significant security incident: Instructure’s Canvas LMS was the subject of a breach…
Read more
Iranian Cyber Threats Escalate: New Campaigns Targeting Water, Energy, and Enterprise Infrastructure
The Threat Has Grown — Here’s What Changed In March 2026, we published a threat advisory covering emerging cyber activity…
Read more
When Your Device Management Platform Becomes the Weapon: Lessons from the 2026 Stryker Cyberattack
Security Alert In early 2026, a cyberattack against a major US corporation resulted in attackers using legitimate Microsoft Intune administrative…
Read more