This month’s Cyber Bulletin focuses on AI security and governance, recent breaches and threat activity, and key events and insights to help organizations reduce risk and stay resilient.
What's New
How Virtual Desktop Infrastructure Supports Long-Term Remote Workforce Stability
Virtual desktop infrastructure enables secure, flexible remote work by centralizing data and applications while reducing endpoint risk.
Zero Trust security focuses on continuously verifying users, devices, and access to reduce risk by eliminating implicit trust and enforcing controls at every level.
Many organizations are adopting AI faster than they are securing it. Recent data shows that 43% of employees have uploaded sensitive company data into AI tools, and 44% say their employer has no AI policy or aren’t sure if one exists.
AI readiness requires more than selecting the right tools. It also depends on strong governance, training, and security. Without clear guidelines, employees may unintentionally expose confidential information, rely on inaccurate outputs, or introduce compliance and privacy issues. These risks increase when AI usage happens outside of approved platforms or without oversight.
A secure, effective AI strategy starts with understanding how AI is being used across the organization, establishing guardrails for data protection, and ensuring employees know when and how AI can be used safely. When paired with the right controls, training, and human judgment, AI can improve efficiency and insight without compromising trust, security, or business resilience.
DPS in the News
Small Business of the Year
DP Solutions was honored by the Howard County Chamber of Commerce in the 2026 ACE Awards (Awards for Chamber Excellence).
CRN Women of the Channel 2026
President, Melissa Bryant, and Director of Marketing, Jill Rose, were recognized on CRN's Women of the Channel list. Melissa was also named as a Power 80 Solution Provider.
...of the Month
Podcast...
The first episode of the Cuppa Joe Podcast, Brewed by DP Solutions, launched this month! Joe Usher interviewed Kelly Schulz, CEO of the Maryland Tech Council, to talk about Maryland’s tech ecosystem, AI, workforce development, and what businesses should be thinking about as technology continues to evolve.
When did it happen? Canvas was taken offline on May 7, and Instructure reached an agreement with the hackers by May 11.
What happened?
ShinyHunters targeted Instructure, Canvas’s parent company, claiming to have stolen student and school data and threatening to leak it unless a ransom was paid. Instructure reached an agreement to recover the data, confirmed its destruction, and advised customers not to negotiate with the attackers.
How many people were affected? The group claimed to have accessed data connected to approximately 9,000 schools and 275 million individuals, including student names, email addresses, student ID numbers, and platform messages. Instructure stated that no passwords, dates of birth, financial information, or Social Security numbers were compromised.
How could this have been prevented? While threat actors were well-positioned, the impact might have been mitigated with these measures:
Regular vulnerability assessments and threat modeling focused on third-party cloud platforms
Enhanced segmentation and access controls to limit exposure of sensitive data
Real-time monitoring and response capabilities to detect unauthorized access more quickly
Pre-approved secure incident response plans, including negotiation and legal frameworks
Partner Spotlight...
We'd like to spotlight David Ervin of MAKOM, who co‑authored, "The Ethical Algorithm," a five‑part series on the ethical, human‑centered use of AI for people with intellectual and/or developmental disabilities (IDD).
