IT News Roundup: AI IPO Race, ShinyHunters Canvas Hack, Cloud Spending Surge - May 25, 2026

The technology landscape this week is dominated by the escalating AI infrastructure arms race, with major players making multi-billion-dollar commitments while the cybersecurity threat landscape continues to evolve. The ShinyHunters gang targeted educational institutions during final exam season, the Verizon DBIR revealed a significant shift in breach vectors, and cloud infrastructure spending reached new heights.

Anthropic Commits 5 Billion to SpaceX for AI Compute Capacity

SpaceX disclosed in its S-1 IPO filing on May 20, 2026, that it has entered into cloud services agreements with Anthropic under which the AI startup will pay approximately .25 billion per month through May 2029 for access to compute capacity across SpaceX's Colossus and Colossus II AI data centers. The deal totals nearly 5 billion over the three-year term, with capacity ramping in May and June 2026 at a reduced fee.

The Colossus data centers are equipped with over 200,000 NVIDIA GPUs and consume hundreds of megawatts of power. The arrangement can be terminated by either party with 90 days' notice. This disclosure, buried within SpaceX's mandatory IPO paperwork, represents one of the largest single compute commitments in the AI industry and underscores the intense competition for GPU capacity that now defines the sector.

Source: Bloomberg, Techopedia

Anthropic Projects Profitability While OpenAI Files for Trillion-Dollar IPO

In a striking contrast in business models, Anthropic has reportedly told investors it is on track to post a profit in the second quarter of 2026, while rival OpenAI is preparing to ask public investors to value the company at more than trillion despite projecting a 4 billion loss for the year. CNBC reported that Anthropic generated .8 billion in revenue during the first quarter and is projected to reach 0.9 billion in the second quarter, with total 2026 revenue expected to hit 0 billion.

OpenAI's confidential IPO filing targets a valuation range of 52 billion to trillion and does not project profitability before 2029 or 2030. The listing will test how much faith investors still have in the growth-at-all-costs model that has defined the AI industry. Both companies are racing to establish market dominance before the other goes public, knowing that capital markets can only absorb so many mega-valuations at once.

Source: Forbes, CNBC, Yahoo Finance

ShinyHunters Disrupts Canvas LMS, Affecting Nearly 9,000 Schools Worldwide

The ShinyHunters cybercriminal group claimed responsibility for a massive attack on Instructure's Canvas learning management system that disrupted education at nearly 9,000 schools and universities worldwide during final exam season. The FBI's Internet Crime Complaint Center issued a public safety announcement warning about the incident, describing ShinyHunters as a group specializing in large-scale data breaches and extortion across tech, finance, and retail sectors.

Threat analysts at Emisoft described the group as a loose affiliation of teenagers and young adults based in the United States and the United Kingdom, previously linked to attacks on Ticketmaster, Santander Bank, and Neiman Marcus. ShinyHunters began threatening to leak stolen data with deadlines of May 9 and May 12. Instructure confirmed on May 11 that it had reached an agreement with the threat actors, and security patches were deployed to restore service. The full scope of data compromised remains under investigation.

Source: FBI IC3, Fortune, Wikipedia

Verizon DBIR 2026: Vulnerability Exploitation Overtakes Stolen Credentials as Top Breach Vector

Verizon published its 2026 Data Breach Investigations Report on May 19, revealing a significant shift in the cyber threat landscape. For the first time, vulnerability exploitation has surpassed stolen credentials as the leading initial entry point for data breaches. The report analyzed thousands of breach cases and found that artificial intelligence is increasingly impacting both offensive and defensive cybersecurity operations.

The 2026 DBIR also highlighted that third-party risk has evolved from a potential concern to an active breach vector, with supply chain attacks becoming more sophisticated. Credential abuse remains at 39% across full breach chains and is still the single most pervasive technique in the dataset, but the rise of zero-day and unpatched vulnerability exploitation signals that organizations must prioritize patch management and vulnerability remediation alongside identity security programs.

Source: Verizon DBIR, Verizon News, Safe Security

Global Cloud Infrastructure Spending Hits 29 Billion in Q1 2026

Synergy Research Group reported that enterprise cloud infrastructure services spending reached 29 billion in the first quarter of 2026, a 35% year-over-year increase and the ninth consecutive quarter of accelerating growth. This brings the annual revenue run rate for the cloud infrastructure market to over half a trillion dollars, underscoring the sector's rapid expansion driven primarily by AI workloads.

The cloud market share battle between AWS, Microsoft Azure, and Google Cloud continues to intensify, with each provider investing heavily in AI-specific infrastructure. Microsoft Azure has been particularly aggressive with AI-driven innovations, while Google expanded its TPU cloud offerings to increase flexibility for enterprises running AI workloads. The spending surge reflects the broader capital-intensive buildout of AI infrastructure that now defines the technology sector.

Source: Synergy Research Group, DCD, CRN