Explore

Rapid Read Rapid Read
Instructure's Canvas LMS Breach Exposes 275 Million Users' Data, Highlighting Vendor Security Risks

Instructure's Canvas LMS Breach Exposes 275 Million Users' Data, Highlighting Vendor Security Risks

Instructure, the company behind the Canvas learning management system, experienced a significant data breach orchestrated by the hacking group ShinyHunters. The breach, which occurred on April 30, 2026, compromised 3.65 terabytes of data affecting 275 million users across nearly 9,000 educational institutions worldwide. This includes private messages between students and educators. The breach highlights a structural vulnerability in the education sector, where schools rely heavily on a single vendor for data management, leaving them vulnerable to security failures. Instructure has since patched the exploited vulnerability, but the incident underscores the risks associated with vendor concentration in educational technology.
Rapid Read Rapid Read
Instructure Faces Major Data Breach, Affecting Millions of Students Worldwide

Instructure Faces Major Data Breach, Affecting Millions of Students Worldwide

Instructure, the company behind the Canvas learning management system, has experienced a significant data breach orchestrated by the hacking group ShinyHunters. This breach, which is the second in eight months, has compromised 3.65 terabytes of data from 275 million users across nearly 9,000 educational institutions globally. The breach includes private messages between students and educators, highlighting the risks associated with vendor concentration in educational technology. The affected institutions, including 44 in the Netherlands, had no control over the vendor's security measures, and students have been advised to remain vigilant.
Rapid Read Rapid Read
Instructure's Canvas Data Breach Affects Millions of Users Worldwide

Instructure's Canvas Data Breach Affects Millions of Users Worldwide

In May 2026, Instructure, the company behind the Canvas learning management system, reported a significant data breach. The breach involved the theft of personal information from users at nearly 9,000 educational institutions globally, affecting approximately 275 million individuals. The compromised data includes names, email addresses, student ID numbers, and messages exchanged on the platform. However, sensitive information such as passwords, social security numbers, and financial details were not accessed. The hacker group ShinyHunters has claimed responsibility for the attack. In response, Instructure has engaged forensic experts, revoked compromised credentials, and implemented additional security measures. The Utah State Board of Education, which widely uses Canvas, is working with Instructure to assess the impact and ensure compliance with state notification laws.
Rapid Read Rapid Read
Hackers Demand Ransom from Instructure, Threaten Data Leak

Hackers Demand Ransom from Instructure, Threaten Data Leak

The education technology company Instructure, known for its Canvas learning management system, has been targeted by the hacking group ShinyHunters. The group has threatened to leak sensitive data unless a ransom is paid. The breach reportedly affects nearly 9,000 educational institutions and compromises the personal information of 275 million people, including students and staff. Instructure has stated that it has contained the attack and is working with forensic experts to investigate. The company has taken steps to secure its systems, including revoking access credentials and enhancing monitoring.
AP News AP News
Cyberattack hits system that thousands of schools use as finals loom

Cyberattack hits system that thousands of schools use as finals loom

A cyberattack has caused chaos for students at thousands of schools as they study for finals
AP News AP News
Cyberattack hits Canvas system used by thousands of schools as finals loom

Cyberattack hits Canvas system used by thousands of schools as finals loom

A cyberattack has caused chaos for students at thousands of schools as they study for finals
Rapid Read Rapid Read
Instructure Education Platform Breached by Hackers, Data of Millions at Risk

Instructure Education Platform Breached by Hackers, Data of Millions at Risk

Instructure, a prominent educational technology company, has confirmed a data breach involving the personal information of its users. The hacking group ShinyHunters has claimed responsibility for the cyberattack, asserting that they have accessed data from nearly 9,000 educational institutions and approximately 275 million individuals worldwide. The stolen data reportedly includes students' names, email addresses, and communications between teachers and students. Instructure has acknowledged the breach but emphasized that user passwords were not compromised. The company is currently investigating the incident and working to enhance its security measures.
Rapid Read Rapid Read
Cyberattack on Canvas Disrupts University Students During Finals Week

Cyberattack on Canvas Disrupts University Students During Finals Week

A cyberattack on the Canvas platform disrupted access for university students across the U.S. during finals week. The attack, claimed by the hacking group ShinyHunters, involved a ransom note appearing on the Canvas sites of institutions like the University of Pennsylvania and Georgetown University. This incident follows a previous breach earlier in the month, where user data such as names, email addresses, and student ID numbers were compromised. Instructure, the parent company of Canvas, reported the platform was in 'maintenance mode' as they investigated the issue.
Trendline Trendline
Instructure Faces Data Breach as Hackers Threaten to Leak Sensitive Information

Instructure Faces Data Breach as Hackers Threaten to Leak Sensitive Information

Instructure Faces Data Breach as Hackers Threaten to Leak Sensitive Information
Rapid Read Rapid Read
Instructure Faces Cyber Attack, User Data Potentially Exposed

Instructure Faces Cyber Attack, User Data Potentially Exposed

Instructure, a prominent ed-tech software company known for its Canvas learning management system, is investigating a cybersecurity breach that may have exposed user data. The breach, disclosed on May 1, involved a criminal threat actor and potentially compromised names, email addresses, student identification numbers, and user-to-user messages. However, there is no evidence that passwords or financial information were affected. The cyber extortion group ShinyHunters has claimed responsibility, threatening to leak the data unless a ransom is paid. Instructure has taken steps to secure its platforms, including revoking credentials and deploying security patches.
Trendline Trendline
Instructure Faces Data Breach Amid Hacker Threats, User Data Compromised

Instructure Faces Data Breach Amid Hacker Threats, User Data Compromised

Instructure Faces Data Breach Amid Hacker Threats, User Data Compromised
Rapid Read Rapid Read
Hackers Breach Instructure, Threaten to Leak Data of Millions in Higher Education

Hackers Breach Instructure, Threaten to Leak Data of Millions in Higher Education

Instructure, a major education technology company, has been targeted by the hacker group ShinyHunters, resulting in a significant data breach. The breach affected the Canvas learning management system, which is widely used by higher education institutions across North America. ShinyHunters claims to have compromised the personal information of 275 million individuals, including students, teachers, and staff from nearly 9,000 schools worldwide. The hackers have demanded a ransom, threatening to leak private messages and personal data if their demands are not met. Instructure has stated that they have contained the attack and are working with forensic experts to investigate the incident.