Schools and universities seek deals with hackers after Canvas data breach
Updated
Updated · Reuters · May 8
Schools and universities seek deals with hackers after Canvas data breach
9 articles · Updated · Reuters · May 8
ShinyHunters says it stole 6.65 terabytes tied to nearly 9,000 schools worldwide, affecting US classrooms as students prepare end-of-year assignments.
Instructure said the hackers exploited its Free-for-Teacher service, altered pages seen by some users and prompted a brief outage before Canvas was restored; Canvas Beta and Test remain in maintenance mode.
The breach, detected in late April, exposed names, emails, student ID numbers and private messages. Canvas serves 30 million active users, and some districts are still restricting access while reviewing safety.
Hackers stole student IDs and private messages. What are the hidden, long-term costs for an entire generation now at risk?
When a free tool from a tech giant exposes 9,000 schools, who is ultimately accountable for the stolen student data?
ShinyHunters Attack on Canvas: Massive Data Theft and Ransom Deadlines Paralyze Global Education Sector
Overview
In late April 2026, the ShinyHunters group exploited a vulnerability in Instructure's Free-For-Teacher accounts to breach the Canvas platform, stealing data from nearly 9,000 institutions. After a ransom deadline passed on May 6 without payment, the hackers defaced login portals for 330 colleges, causing widespread panic during final exams. Instructure responded by taking down Canvas on May 7 to contain the breach, disrupting exams and forcing some schools to suspend access. Institutions faced an ethical dilemma: pay ransom and fund criminals or risk prolonged disruption and data exposure. The attack exposed major cybersecurity gaps, prompting calls for stronger defenses, legal actions, and industry-wide reforms to protect educational data.