The Instructure Canvas Breach (2026): How a Single Support Ticket Exposed 275 Million Students

https://thecybersecguru.com/analysis/instructure-canvas-breach-2026-stored-xss/

I wrote a thing, and if you're interested in #EdTech #TEL or #Education you might want to give it a wee read:

Instructure Pwned

https://blog.mcchristie.com/instructure-pwned/

#Breach #Canvas #Data #Hack #Instructure #Pokemon #VLE

𝐒𝐢𝐧𝐜𝐞 𝐖𝐡𝐞𝐧 𝐃𝐢𝐝 𝐀𝐬𝐤𝐢𝐧𝐠 𝐟𝐨𝐫 𝐄𝐯𝐢𝐝𝐞𝐧𝐜𝐞 𝐁𝐞𝐜𝐨𝐦𝐞 “𝐃𝐞𝐟𝐞𝐧𝐝𝐢𝐧𝐠 𝐂𝐫𝐢𝐦𝐢𝐧𝐚𝐥𝐬”?

Dissent responded harshly to these accusations, firmly rejecting any insinuation of collusion with criminal groups. The journalist pointed out that every time she asks for evidence to support certain claims, she is labeled “criminal-friendly” or accused of being a mouthpiece for cybercriminals, simply for refusing to uncritically accept statements lacking public verification.

https://www.suspectfile.com/since-when-did-asking-for-evidence-become-defending-criminals/

#Canvas #Data_Breach #Instructure #Navigate360 #Ransom #ShinyHunters

NEW by me:

Another detail emerges about Instructure's agreement with ShinyHunters; Debate continues about whether to pay:

https://databreaches.net/2026/05/16/another-detail-emerges-about-instructures-agreement-with-shinyhunters-debate-continues-about-whether-to-pay/

Cybersecurity experts make claims about ShinyHunters to journalists, but where is the evidence to support their claims? Journalists shouldn't just quote experts -- ask them the basis for their claims. How much evidence do they actually have to support their assertions?

#hackandleak #databreach #Instructure #ShinyHunters #ransom #journalism

@amvinfe @masek @euroinfosec

#US govt seeks #Instructure testimony on massive #Canvas #cyberattack

https://www.bleepingcomputer.com/news/security/us-govt-seeks-instructure-testimony-on-massive-canvas-cyberattack/

#privacy #cybersecurity #DataBreach #education

Instructure has reached an agreement with the #ShinyHunters group to return and destroy stolen Canvas data, protecting millions of student records worldwide from being publicly leaked.

Read: https://hackread.com/instructure-shinyhunters-deal-prevent-canvas-data-leak/

#CyberSecurity #DataBreach #Instructure #Canvas #Privacy

🛡️ Canvas Hacks: Lawmakers Grill Instructure Over Repeated Breaches

Millions of student records, compromised. Twice. That's got U.S. lawmakers demanding Instructure explain its repeated data breaches, questioning everything from incident response to basic security.

https://byte-pulse.net/article/canvas-hacks-lawmakers-grill-instructure-over-repeated-breaches

#instructure #databreach #cybersecurity #canvas

𝐑𝐚𝐧𝐬𝐨𝐦𝐰𝐚𝐫𝐞, 𝐓𝐫𝐚𝐧𝐬𝐩𝐚𝐫𝐞𝐧𝐜𝐲, 𝐚𝐧𝐝 𝐈𝐧𝐯𝐢𝐬𝐢𝐛𝐥𝐞 𝐕𝐢𝐜𝐭𝐢𝐦𝐬: 𝐃𝐢𝐬𝐬𝐞𝐧𝐭 𝐑𝐞𝐬𝐩𝐨𝐧𝐝𝐬 𝐭𝐨 𝐭𝐡𝐞 𝐈𝐧𝐬𝐭𝐫𝐮𝐜𝐭𝐮𝐫𝐞 𝐂𝐚𝐬𝐞

A recent article published by DataBreaches.net by journalist Dissent addresses one of the most controversial issues in modern cybersecurity: the payment of ransoms following a cyberattack and the consequences such decisions can have not only on the companies involved, but also on the individuals whose data has been compromised.

https://www.suspectfile.com/ransomware-transparency-and-invisible-victims-dissent-responds-to-the-instructure-case/

#Canvas #Data_Breach #Instructure #Navigate360 #Ransom #Ransomware #ShinyHunters