Instructure
Coverage of Instructure in the Nexus archive.
- Oxford Uni student data pwned yet again - this time via career platform breach
Oxford University's CareerConnect platform, managed by Group GTI, suffered a data breach exposing users' full names and email addresses, with encrypted passwords leaked for non-SSO users. The breach, attributed to a fixed security vulnerability, is separate from a recent Canvas platform attack affecting 275 million users. Group GTI and Instructure have not disclosed full details of the incidents.
- The Canvas breach proved that prevention is no longer enough
The Canvas breach resulted in 3.65 terabytes of data stolen from approximately 275 million users, highlighting the need for improved security measures. The attack was carried out by ShinyHunters, who compromised 'Free-For-Teacher' accounts and escalated rapidly. This incident exposes the gap in enterprise security frameworks, which still treat SaaS platforms primarily as availability problems.
- Canvas hack: is it ever a good idea to pay a ransom, and what happens to the data?
The US tech firm Instructure, operator of the education platform Canvas, has reached an agreement with hackers behind a ransomware attack that stole hundreds of millions of students' data. The company's language suggests a ransom may have been paid, despite advice against doing so. The attack caused outages and disrupted school services.
- Cybercriminal Twins Caught After They Forgot to Turn Off Microsoft Teams Recording
Cybercriminal twins were caught after forgetting to turn off a Microsoft Teams recording, and other cybercrime stories unfolded including an alleged dark net market kingpin's arrest and OpenAI workers falling victim to a supply chain attack. The Instructure’s Canvas ransomware incident also came to a close. These events highlight the ongoing issues in cybersecurity.
- Nobody believes the 'criminals and scumbags' who hacked Canvas really deleted stolen student data
Instructure reached an agreement with data theft and extortion crew ShinyHunters after a breach of Canvas user data, but experts doubt that stolen data was deleted. The incident affects nearly 9,000 universities and K-12 schools, and around 275 million students, teachers, and staff. Experts expect further phishing attacks using leaked information.
- US lawmakers demand answers from Instructure after Canvas data breaches
US lawmakers are demanding answers from Instructure after the company experienced two data breaches, resulting in the theft of large amounts of student data from its Canvas software. The breaches compromised sensitive information of students using the platform. Lawmakers want to know how the hacks occurred.
- US govt seeks Instructure testimony on massive Canvas cyberattack
The US House Committee on Homeland Security is seeking testimony from Instructure executives regarding two cyberattacks on the Canvas platform by the ShinyHunters extortion group, which resulted in stolen student data and school disruptions. The attacks occurred during final exams and targeted the company's platform. The committee's call for testimony indicates a growing concern over cybersecurity threats in educational institutions.
- Canvas platform strikes deal with hackers to delete students’ stolen data
Canvas platform struck a deal with hackers to delete stolen student data after a cyberattack caused chaos for students and faculty during finals. The hack delayed some final exams and affected many students. Instructure, the parent company of Canvas, reached an agreement with the unauthorized actor involved.
- Canvas platform strikes deal with hackers to delete students’ stolen data
Canvas platform struck a deal with hackers to delete stolen student data after a cyberattack caused chaos for students and faculty during finals. The hack affected the online learning system, delaying some final exams. Instructure, the parent company of Canvas, reached an agreement with the unauthorized actor involved.
- Congress investigates Canvas breach as company pays ransom
The US Congress is investigating a breach of Instructure's Canvas online platform, which was hacked twice in two weeks, and the company has paid a ransom to extortion crew ShinyHunters. The breach affected up to 275 million students, teachers, and staff. Instructure's CEO Steve Daly has been summoned to explain the circumstances of the intrusions.
- Instructure strikes deal with hackers who breached it twice
Instructure reached an agreement with hackers who breached its Canvas school software twice, but no guarantees were provided that the data would not be released or that the hackers would keep their word. The breach occurred twice and the company is trying to mitigate the damage. The outcome of the agreement is uncertain.
- Canvas owner reaches ‘agreement’ with hackers to secure stolen data
Instructure, the company behind Canvas, reached an agreement with hackers to secure stolen data, preventing a leak of 3.5 terabytes of student data. The agreement came after the ShinyHunters hacking group claimed responsibility for the attack and threatened to publish the data. Instructure claims no customers will be extorted as a result.
- Instructure pays ransom after Canvas incident as Congress announces investigation
Instructure paid a ransom to hackers after a security incident involving Canvas, and Congress has announced an investigation into the matter. The company agreed to the hackers' terms, which included the return of their data and digital confirmation of its destruction. This incident has led to a congressional investigation.
- Instructure reaches 'agreement' with ShinyHunters to stop data leak
Instructure reached an agreement with ShinyHunters to stop a data leak from being leaked online after a recent breach, involving the Canvas learning management system. The agreement aims to prevent stolen data from being published. Instructure is an edtech giant.
- Instructure Reaches Ransom Agreement with ShinyHunters to Stop 3.65TB Canvas Leak
Instructure reached a ransom agreement with ShinyHunters to stop a 3.65TB Canvas leak after a network breach. The breach threatened to leak stolen information from thousands of schools and universities. Instructure is the parent company of Canvas.
- Instructure pays ransom to Canvas hackers
Instructure paid a ransom to hackers who compromised Canvas, a learning management system. The incident was reported and updates are available on Instructure's website. Further details can be found in related news articles.
- Pressure mounts on Canvas as data leak extortion deadline looms
Cybercriminals are threatening to leak sensitive data from Canvas, a widely used education tech platform, after a prolonged cyberattack. The company behind Canvas, Instructure, has taken the platform offline following malicious activity. A decentralized crew of cybercriminals, ShinyHunters, is attempting to extort the company for an unknown ransom amount.
- Double Canvas breach acknowledged as ShinyHunters sets new pay-or-leak deadline
Instructure's online learning platform Canvas experienced two rounds of unauthorized activity, with data theft and extortion crew ShinyHunters threatening to leak data of over 275 million students and staff. The breach affected nearly 9,000 schools worldwide, including Harvard and Stanford universities. Instructure has taken measures to contain the incident and notified the FBI and US Cybersecurity and Infrastructure Security Agency.
- Instructure confirms hackers used Canvas flaw to deface portals
Instructure confirmed a security vulnerability in Canvas allowed hackers to modify login portals and leave an extortion message. The issue was related to a flaw in the Canvas platform. Hackers exploited this flaw to deface the portals.
- School app Canvas breach hits during finals
Canvas, a school platform used by colleges and universities, experienced a breach during finals week, causing stress and confusion among students and teachers. The outage was caused by unauthorized activity detected by Instructure, the company behind Canvas. Instructure temporarily took Canvas offline to contain the activity and apply additional safeguards.
- ShinyHunters Claims Second Attack Against Instructure
ShinyHunters has claimed a second attack against Instructure, an edtech company struggling to regain control from hackers, putting personally identifiable information of hundreds of millions of people at risk. The attack highlights the severe security challenges faced by the company. Instructure's ability to protect user data is being questioned.
- Chaos erupts as cyberattack disrupts learning platform Canvas amid finals
A cyberattack disrupted the online learning platform Canvas, causing chaos at schools and colleges throughout the US as students were due to take final exams. The platform was taken offline temporarily after identifying unauthorized activity in its network. Canvas parent company Instructure reported that the platform was back online as of Friday morning.
- Canvas outage delays college finals across the country
A cyberattack on Canvas, a learning platform used by thousands of schools, has caused universities across the country to reschedule or cancel finals. The attack was detected in late April and resulted in the breach of personal information. Canvas is back online after being shut down.
- Multiple universities forced to reschedule final exams after Canvas cyber incident
Dozens of students encountered a message from a cybercriminal group on Canvas, an educational platform created by Instructure, forcing multiple universities to reschedule final exams. The incident occurred on Thursday and was reported by students on social media. The affected universities had to adjust their exam schedules due to the disruption.
- Hackers ate my homework: Educational SaaS Canvas down after cyberattack
Canvas, an educational SaaS, was down after a cyberattack by hacking crew ShinyHunters, affecting students and universities worldwide. The attack has led to concerns about data leakage and phishing risks. Institutions are taking precautions and extending assignment deadlines.
- Instructure hackers claim they stole data from nearly 9,000 schools
Hackers from Instructure claim to have stolen data from nearly 9,000 schools and locked students out of Canvas, warning the company to negotiate by May 12. The hackers' actions have caused disruption to educational services. The situation is being closely monitored.
- The Canvas Hack Is a New Kind of Ransomware Debacle
Thousands of US schools were affected by a ransomware attack on the Canvas platform, prompting Instructure to shut down access. The breach was carried out by hackers calling themselves ShinyHunters. This incident has significant implications for the education sector.
- Canvas Breach Disrupts Schools & Colleges Nationwide
A cybercrime group called ShinyHunters has breached the education technology platform Canvas, disrupting classes and coursework at schools and universities across the US, and is demanding a ransom to prevent the publication of stolen data. The breach affects nearly 9,000 educational institutions and millions of students and faculty. Canvas parent firm Instructure has disabled the platform in response.
- Hackers threaten to leak data from 275M users after breaching major college platform used nationwide
Hackers from the group ShinyHunters have breached the Canvas learning platform, affecting thousands of students nationwide, and are threatening to leak data from 275 million users if their demands are not met. The breach has caused disruptions to coursework and exams, with universities investigating the incident. The hackers claim to have obtained user information such as names, email addresses, and student ID numbers.
- Canvas login portals hacked in mass ShinyHunters extortion campaign
The ShinyHunters extortion gang has breached Instructure, exploiting a vulnerability to deface Canvas login portals for hundreds of colleges and universities. This is the latest breach in a mass extortion campaign. The attack targets education technology.
- Canvas (Instructure) LMS Down in Ongoing Ransomware Attack
Canvas, a learning management system by Instructure, is down due to an ongoing ransomware attack. The breach has affected the platform's functionality. Users are experiencing outages and disruptions.
- Hackers deface school login pages after claiming another Instructure hack
Hackers have defaced school login pages after claiming to have hacked another Instructure system. The hack has affected multiple schools, with the hackers leaving their mark on the login pages. The incident has raised concerns about cybersecurity in educational institutions.
- Canvas is down as ShinyHunters threatens to leak schools’ data
Canvas, a learning management platform owned by Instructure, is down due to a data breach that exposed student information, and the hacking group ShinyHunters has claimed responsibility for the attack. The breach impacted student names, email addresses, ID numbers, and messages. ShinyHunters is threatening to leak the affected schools' data.
- Hackers deface school login pages after claiming another Instructure hack
The cybercrime group ShinyHunters claimed to have hacked Instructure again and defaced the login pages of several Instructure customer schools with an extortion message. This is the latest in a series of hacks by the group. The attack has compromised the security of the affected schools' login systems.
- Instructure Breach Exposes Schools' Vendor Dependence
Instructure, owner of the Canvas learning management system, was breached by ShinyHunters, raising concerns about educational institutions' trust in vendors. The attack has significant implications for the education sector. Instructure's security is under scrutiny.
- Instructure hacker claims data theft from 8,800 schools, universities
A hacker has claimed to have stolen 280 million data records from 8,809 colleges, school districts, and online education platforms, including universities and schools. The breach occurred at Instructure, an education technology giant. The stolen data includes records of students and staff.
- Hackers steal students’ data during breach at education tech giant Instructure
Hackers stole students' private data during a breach at Instructure, an education tech giant. The allegedly stolen data was seen by TechCrunch. The breach includes sensitive student information.
- Instructure confirms data breach, ShinyHunters claims attack
Instructure, an educational tech giant, has confirmed a data breach due to a cyberattack. The ShinyHunters extortion gang claims responsibility for the attack. The breach resulted in stolen data.
- Edu tech firm Instructure discloses cyber incident, probes impact
Instructure, the company behind the widely used Canvas learning platform, has disclosed a recent cybersecurity incident and is investigating its impact. The incident involves potential data breaches affecting the educational technology sector.
- Story retracted
BleepingComputer retracted an article about a new data breach at Instructure after determining the information was incorrect and based on outdated details from a prior incident. The publication apologized for the error.