Instructure, the company behind Canvas school software, says it has reached an agreement with hackers who breached its systems twice. The company did not provide assurances that the attackers will not release stolen data or honor any promises made. With the incident still clouded, schools and users may be left waiting for clearer outcomes.
Instructure has placed its Canvas learning platform into maintenance mode after a cybersecurity incident disrupted access for many schools and universities. Some users reported being redirected to an unauthorized message that was allegedly linked to the cybercriminal group ShinyHunters. The company says Canvas is now available for most users, but services were impacted long enough to disrupt learning across multiple institutions.
Your news, in seconds
Get the Beige app — every story in 60 words, updated hourly. Free on iOS & Android.
A cybercrime group calling itself ShinyHunters says it has hacked Instructure again, this time by defacing login pages for several schools that use the company’s platforms. The attackers reportedly inserted an extortion message, turning everyday access points into a threat. The claims raise new concerns for K-12 and higher education security around widely used learning tools.
Education tech company Instructure is facing a data breach in which hackers allegedly accessed and stole students’ private information. TechCrunch reviewed a sample of the data said to be taken in the incident and reports it includes sensitive student details. The case raises fresh concerns about security at education-focused platforms and what protections are in place for minors’ data.
Swipe through stories, personalise your feed, and save articles for later — all on the app.
