"ShinyHunters has breached Instructure (again). Instead of contacting us to resolve it they ignored us and did some "security patches." If any of the schools in the affected list are interested in preventing the release of their data, please consult with a cyber advisory firm and contact us privately at TOX to negotiate a settlement. You have till the end of the day by 12 May 2026 before everything is leaked."
"ShinyHunters - which has claimed responsibility for attacks on Ticketmaster, AT&T, Rockstar Games, ADT, and Vercel - said its data leak site contains 9,000 schools, including data belonging to 275 million students, teachers, and other staff, according to Bleeping Computer."
Canvas, an Instructure-owned learning management platform, went down after confirming a significant data breach compromising student names, email addresses, ID numbers, and messages. The hacking group ShinyHunters claimed responsibility for the attack and displayed a ransom message to users attempting access on Thursday. ShinyHunters demanded schools contact them by May 12, 2026, to negotiate settlements and prevent data release. The group claims to have breached 9,000 schools with data from 275 million students, teachers, and staff members. Instructure previously deployed security patches in response to the breach. ShinyHunters has a history of attacking major organizations including Ticketmaster, AT&T, Rockstar Games, ADT, and Vercel.
Read at The Verge
Unable to calculate read time
Collection
[
|
...
]