treelzebub14m ago
#Instructure really showing us how not to run an incident. also, love that this is their latest blog post
https://www.instructure.com/resources/blog/automating-hipaa-compliance-why-healthcare-organizations-need-lms
Automating HIPAA Compliance: Why Healthcare Organizations Need an LMS

Automate HIPAA compliance and reduce risk with a professional LMS. Streamline healthcare training, track certifications, and simplify audits with ease.

Instructure
Daniel Marsh2h ago

A massive ShinyHunters attack has compromised Canvas login portals for 15,000 institutions, including top universities like Harvard and Oxford, exfiltrating 3.65 terabytes of student and faculty data. This incident, alongside a concurrent supply chain attack on Vimeo, exposes critical flaws in EdTech security and third-party vendor trust, raising urgent questions about data protection.

https://www.tpp.blog/1oujkrv

#cybersecurity #canvas #instructure

🤖 This post was AI-generated.

BrianKrebs2h ago

New, from me: Canvas Breach Disrupts Schools and Colleges Nationwide

"An ongoing data extortion attack targeting the widely-used education technology platform Canvas disrupted classes and coursework at school districts and universities across the United States today, after a cybercrime group defaced the service’s login page with a ransom demand that threatened to leak data from 275 million students and faculty across nearly 9,000 educational institutions."

"Canvas parent firm Instructure [NYSE:INST] responded to today's defacement attacks by disabling the platform, which is used by thousands of schools, universities and businesses to manage coursework and assignments, and to communicate with students."

Lots more here:

https://krebsonsecurity.com/2026/05/canvas-breach-disrupts-schools-colleges-nationwide/

#canvas #breach #shinyhunters #instructure

Mathrubhumi English3h ago
A massive cyberattack on Canvas, used by thousands of US schools, disrupted exams and sparked data breach fears after ShinyHunters blocked access nationwide. https://english.mathrubhumi.com/technology/shinyhunters-hack-canvas-us-schools-outage-explained-tsylsgh3?utm_source=dlvr.it&utm_medium=mastodon #Canvas #UnitedStates #Hacked #Instructure
Hacker News3h ago

ShinyHunters claims data theft from 8,800 schools (Instructure/Canvas)

https://www.bleepingcomputer.com/news/security/instructure-hacker-claims-data-theft-from-8-800-schools-universities/

#HackerNews #ShinyHunters #DataTheft #Schools #Instructure #Canvas #Cybersecurity #EducationSecurity

Instructure hacker claims data theft from 8,800 schools, universities

The hacker behind a breach at education technology giant Instructure claims to have stolen 280 million data records for students and staff from 8,809 colleges, school districts, and online education platforms.

BleepingComputer
Dorothea Salo4h ago

I've seen questions about the #instructure #canvas leak, to the effect of "why's the data so dangerous if there's nothing financial in it?"

There are identifiers, for one thing.

But I think the real threat is... look, students send instructors some really heavy and confidential stuff in Canvas messaging sometimes. Health stuff. Family stuff. Relationship stuff. Occasionally even crime stuff.

I really am relieved that I direct students to email. I feel horrible for what could happen.

germanio4h ago

Instructure, the company behind Canvas, has been hacked.

https://techcrunch.com/2026/05/07/hackers-deface-school-login-pages-after-claiming-another-instructure-hack/

#education #hack #instructure #canvas

Hackers deface school login pages after claiming another Instructure hack | TechCrunch

The cybercrime group ShinyHunters claimed to have hacked Instructure again, defacing the login pages of several Instructure customer schools with an extortion message.

TechCrunch
Hackread.com5h ago

📢 Just In: #ShinyHunters hackers defaced the official Canvas LMS portal after breaching Instructure systems, disrupting university access worldwide.

Students at multiple universities reported outages and class disruptions as Canvas portals displayed ransom-style messages linked to the group.

Read more: https://hackread.com/shinyhunters-defaces-canvas-lms-portal-universities-affected/

#CyberSecurity #DataBreach #CanvasLMS #Instructure

ShinyHunters Defaces Canvas LMS Portal, Thousands of Universities Affected

ShinyHunters hackers defaced the official Canvas LMS portal after breaching Instructure systems, disrupting university access worldwide.

Hackread - Cybersecurity News, Data Breaches, AI and More
DysruptionHub5h ago
Canvas outage disrupts schools nationwide after breach notices #Canvas #Instructure #DataBreach #Ransomware #Outage #Florida https://dysruptionhub.com/canvas-outage-instructure-cyber-incident/
Canvas outage disrupts schools nationwide after breach notices

Instructure took Canvas offline during a cyber incident, disrupting exams, coursework and grading at schools nationwide.

DysruptionHub
Show threadDissent Doe  6h ago

@argv_minus_one

I'm not sure I understand why people are trying to research what schools use Canvas. ShinyHunters provided a list of all of the schools that were caught up in this attack:

https://databreaches.net/wp-content/uploads/Claimed-Victims-of-Canvas-Cyber-Incident.txt That list has 8,809 entities listed.

It's not the entire universe of schools that use Canvas, but it's probably an accurate list of the schools that may be affected. A sample list ShinyHunters provided for my earlier report on this incident showed filesizes for: communication_channels.csv.gz, conversation_messages.csv.gz, conversations.csv.gz, and users.csv.gz. There were about 7,780 schools in that sample.

And yeah, hang on to your Tox because Session is closing in July, it seems.

#Instructure #Canvas #ShinyHunters #hackandleak #EduSec #databreach