Security Management, May 2026

On 26 May, the U.S. Federal Bureau of Investigation (FBI) issued a flash alert warning of a ransomware group that is supplementing social engineering schemes with paid, in-person support. The warning was specifically for U.S. law firms, a favorite target of this particular group.

Regular clashes and waves of violence in the Democratic Republic of the Congo decimated state services in rural areas and pushed people into crowded camps to escape the fighting—which has serious ramifications for efforts to treat an ongoing Ebola outbreak.

An ongoing investigation into city-wide allegations of child abuse at nurseries and primary schools in Paris, France, has led to arrests, trials, and protests from both parents and school staff.

A Virginia judge dismissed charges against a former school administrator accused of failing to act on several warnings that a student had a gun, which he used later that day to shoot his teacher.

Judges overseeing the trials involving the murders of Brian Thompson in New York and Charlie Kirk in Utah hear arguments and make rulings as both cases make progress toward trials.

A new partnership led by Georgetown University and MedStar Health seeks to provide early and actionable information about emerging disease risks around the 2026 FIFA World Cup.

The World Health Organization announced that the current Ebola outbreak in the Democratic Republic of the Congo and Uganda constitutes a public health emergency, with impacts on several nations.

“In my 18 years in government, I have not seen a threat environment quite like this one,” said NYPD Commissioner Jessica Tisch. “Today’s case is a stark example of how these tensions that originate overseas translate into violence.”

The Association of Certified Fraud Examiners' latest report found that most occupational fraudsters passed background checks without exhibiting red flags, including 4 percent of employees previously convicted on fraud charges.

Late on 8 May, a man breached the perimeter of the Denver International Airport and was killed on a runway as a jet was taking off. The incident has triggered scrutiny of airport perimeter security.

While 86 percent of U.S. K-12 school staff say securing the school building’s front entrance is a top or high priority, 36 percent said their entrances are only somewhat, minimally, or not at all secure, according to a new survey.

Identity-related breaches were the biggest cybersecurity headache in 2025, with nearly 70 percent of ransomware victims reporting that their ransomware incidents were tied to an identity attack.

Around 150 passengers and crew from the MV Hondius cruise ship were evacuated on 10 May one month after a passenger died onboard from a hantavirus outbreak.

The U.S. Department of Justice charged a special forces solder with using his access to classified information to profit on wagers on a prediction market. For our May Legal Report, we spoke with risk management experts to understand what the indictment means for insider risk management.

According to new survey research from The Harris Poll Thought Leadership Practice, 60 percent of American workers have a boss who exhibits toxic behaviors, and a total of 70 percent say they have had at least one toxic boss during their career.

Zoos in Arizona, Colorado, Kentucky, Ohio, and more evacuated and temporarily closed in response to bomb and active shooter threats during the first week of May.

In the Philippines, Mayon volcano recently spewed out huge deposits of lava, hot rocks, ash, and gas, triggering an evacuation that had more than 5,400 people fleeing the impacted areas.

So, you want to implement agentic artificial intelligence (AI) into your business? Do so carefully, warns a group of government cybersecurity agencies.

Organized crime groups like the Black Axe are increasingly targeting both European individuals and organizations in cyber-enabled fraud schemes that generate substantial profits and significant losses—$64.1 billion in the EU in 2025 alone.