One of the most widely used education platforms in the world is at the center of a major cybersecurity incident. The Shiny Hunters hacking group breached Canvas — the learning management system used by thousands of schools globally — twice, disrupting login pages during finals week and stealing over 3.5 terabytes of sensitive student and school data. The stolen information reportedly includes names, emails, student IDs, and even private teacher-student-parent messages. The company behind Canvas has confirmed it reached an agreement with the hackers — widely believed to involve a ransom payment in exchange for the data being returned and supposedly deleted. Security experts are clear: there is never a guarantee that criminals actually destroy stolen data after a ransom is paid. This week's big takeaway: Education platforms now centralize enormous amounts of sensitive personal data — including information tied to minors — making schools and cloud-based learning platforms prime targets for cybercriminals. https://www.darkreading.com/cyberattacks-data-breaches/shinyhunters-second-attack-instructure https://www.reuters.com/legal/litigation/canvas-parent-company-reaches-agreement-with-hacking-group-behind-recent-breach-2026-05-12/ 🗓️ Week ending May 16th, 2026
No comments:
Post a Comment