A week in security (May 4 – May 10) was published by Malwarebytes Labs on 11 May 2026. According to Malwarebytes Labs, the week’s highlights include a post noting that Microsoft says Edge’s plaintext password behavior is “by design” and coverage of ShinyHunters escalating Canvas attacks with school login defacements.
Other items referenced include a report on a massive AI investment scam network spanning 15,500 domains, and analyses of related threats such as the use of the Keitaro ad-tracking platform to cloak campaigns. The round‑up also points readers to stories about education breaches, updates to WhatsApp vulnerability concerns, and other threat intelligence pieces published in early May 2026. Stay tuned for more in‑week security summaries and related analyses.