{"id":217772,"date":"2026-05-21T03:35:06","date_gmt":"2026-05-21T07:35:06","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/05\/21\/canvas-breach-disrupts-schools-colleges-nationwide-krebs-on-security\/"},"modified":"2026-05-21T03:35:09","modified_gmt":"2026-05-21T07:35:09","slug":"canvas-breach-disrupts-schools-colleges-nationwide-krebs-on-security","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/05\/21\/canvas-breach-disrupts-schools-colleges-nationwide-krebs-on-security\/","title":{"rendered":"Canvas Breach Disrupts Schools &#038; Colleges Nationwide \u2013 Krebs on Security"},"content":{"rendered":"<p><a href=\"https:\/\/krebsonsecurity.com\/2026\/05\/canvas-breach-disrupts-schools-colleges-nationwide\/\">Canvas Breach Disrupts Schools &#038; Colleges Nationwide \u2013 Krebs on Security<\/a><\/p>\n<p><a href=\"https:\/\/krebsonsecurity.com\/2026\/05\/canvas-breach-disrupts-schools-colleges-nationwide\/\">https:\/\/krebsonsecurity.com\/2026\/05\/canvas-breach-disrupts-schools-colleges-nationwide\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-07 23:14:53<\/a><\/p>\n<p>Source Domain: <a href=\"krebsonsecurity.com\">krebsonsecurity.com<\/a><\/p>\n<h3>Data Extortion Attack on Education Tech Platform Canvas<\/h3>\n<p>An ongoing data extortion attack targeting the Canvas education technology platform disrupted classes and coursework in many U.S. school districts and universities. A notorious cybercrime group called ShinyHunters, known for data theft and extortion, defaced the Canvas login page and demanded a ransom to avoid leaking personal data of 275 million students and faculty across nearly 9,000 educational institutions. Instructure, Canvas&#8217;s parent company, acknowledged the data breach and initially believed the incident was contained. However, ShinyHunters&#8217; continued threats led Instructure to disable the platform, causing an ongoing disruption amid final exams. The stolen data includes names, email addresses, student ID numbers, and internal messages, though no sensitive financial details were compromised. In a surprising turn, ShinyHunters removed all mentions of Instructure and its data samples, hinting at a negotiated ransom payment. Dipan Mann of security firm Cloudskope criticized Instructure for inadequate responses, underscoring multiple breaches over eight months. The incident reflects ongoing cybercriminal activities by ShinyHunters, which regularly targets high-profile organizations.<\/p>\n<h4>Key Points:<\/h4>\n<ul>\n<li>An ongoing extortion attack targeted Canvas, causing disruptions across U.S. educational institutions.<\/li>\n<li>ShinyHunters demanded ransom to prevent the leak of personal data of 275 million students and faculty.<\/li>\n<li>Instructure responded by taking Canvas offline, which is hampering coursework and communications during final exams.<\/li>\n<li>Instructure acknowledged the breach but believed the incident was contained until ShinyHunters&#8217; fresh threats.<\/li>\n<li>Initial data includes less sensitive information but still represents a significant security breach.<\/li>\n<\/ul>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Canvas Breach Disrupts Schools &#038; Colleges Nationwide \u2013 Krebs on Security https:\/\/krebsonsecurity.com\/2026\/05\/canvas-breach-disrupts-schools-colleges-nationwide\/ Publish Date: 2026-05-07&#8230;<\/p>\n","protected":false},"author":1,"featured_media":217773,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/krebsonsecurity.com\/wp-content\/uploads\/2026\/05\/shinyhunters-instructure-canvas.png","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[30],"class_list":["post-217772","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-breach"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/217772"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=217772"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/217772\/revisions"}],"predecessor-version":[{"id":217774,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/217772\/revisions\/217774"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/217773"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=217772"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=217772"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=217772"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}