Cyber Security Ventures

The Canvas Hack: Who, What, Where, When, and Why


The Canvas Hack: Who, What, Where, When, and Why

This week in cybersecurity from the editors at Cybercrime Magazine

Sausalito, Calif. – Jul. 7, 2026

– Listen to the podcast

EdTech company Instructure confirmed a massive data breach this past spring. The ShinyHunters group claimed responsibility, alleging that data of 275 million individuals was stolen, including private messages between students and teachers. Instructure, best known for its Canvas learning management system used by schools and universities worldwide, disclosed the incident on May 1.

HackRead obtained the full list of affected institutions impacted by the breach, indicating the vast scale of the theft and impacting around 15,000 institutions across the U.K., Europe, and the U.S.


Instructure said it was forced to suspend the Canvas portal May 7. At the time, 30 million users — including around half of the higher education institutions in North America — relied on Canvas to manage courses, submit assignments, view grades and facilitate communication. Some schools affected by the breach postponed or outright scrapped some final exams, with others warning students and professors that they might need to do so.

On May 12 it was reported that Instructure paid a ransom to a gang of cybercriminals, and said it “received digital confirmation of data destruction (shred logs)” and assurance “that no Instructure customers will be extorted as a result of this incident, publicly or otherwise.”

Michael Centrella, the Head of Public Policy at SecurityScorecard, and Theresa Payton, former White House CIO, recently joined Amanda Glassner, Deputy Editor at Cybercrime Magazine, for a riveting discussion on the Canvas breach.

Listen to the Podcast episode


Cybercrime Magazine is Page ONE for Cybersecurity. Go to any of our sections to read the latest:

  • SCAM. The latest schemes, frauds, and social engineering attacks being launched on consumers globally.
  • NEWS. Breaking coverage on cyberattacks and data breaches, and the most recent privacy and security stories.
  • HACK. Another organization gets hacked every day. We tell you who, what, where, when, and why.
  • VC. Cybersecurity venture capital deal flow with the latest investment activity from various sources around the world.
  • M&A. Cybersecurity mergers and acquisitions including big tech, pure cyber, product vendors and professional services.
  • BLOG. What’s happening at Cybercrime Magazine. Plus the stories that don’t make headlines (but maybe they should).
  • PRESS. Cybersecurity industry news and press releases in real time from the editors at Business Wire.
  • PODCAST. New episodes daily on the Cybercrime Magazine Podcast feature victims, law enforcement, vendors, and cybersecurity experts.
  • RADIO. Tune into WCYB Digital Radio at Cybercrime.Radio, the first and only round-the-clock internet radio station devoted to cybersecurity.

Contact us to send story tips, feedback and suggestions, and for sponsorship opportunities and custom media productions.



Source link