"Canvas is at the center of an ongoing cyberattack and data extortion attempt by a well-known cybercriminal group that claims to have stolen student records. If you are a Canvas user, you can take defensive measures now."
"Instructure says the LMS now supports tens of millions of users -- students and parents -- and has recorded 27 million mobile app downloads. Canvas is available in over 100 countries. Designed for remote learning, Canvas has been adopted by thousands of schools for course creation and management, grading, feedback, and coursework submission."
"Instructure CISO Steve Proud said last week that the LMS had "recently experienced a cybersecurity incident perpetrated by a criminal threat actor." The company began investigating. On May 6, Proud said the company believed the incident had been "contained," but some data may have been exposed -- and it didn't take long for students to begin reporting login issues."
"On Thursday, May 7, Canvas login interfaces were defaced, with ransom notes reportedly posted by the ShinyHunters group as it moved from data theft to public extortion. Students who tried to log in were unable to access their course materials, likely a deliberate attempt by the cyberattackers to put pressure on Instructure to pay up,"
Canvas, an Instructure learning management system used by schools worldwide, experienced a cybersecurity incident involving a criminal threat actor. Instructure reported that the incident was investigated and believed to be contained, while some data may have been exposed. Students began reporting login problems after the investigation. Canvas login interfaces were defaced with ransom notes posted by the ShinyHunters group, shifting from data theft to public extortion. Students attempting to sign in were unable to access course materials, likely intended to pressure Instructure to pay. Canvas users should take defensive steps in response to the disruption and potential data exposure.
Read at ZDNET
Unable to calculate read time
Collection
[
|
...
]