Instructure Canvas software hit by hackers demanding ransom

Instructure Canvas software hit by hackers demanding ransom

Instructure, the company behind Canvas educational software used by schools globally, has reported reaching an agreement with hackers who breached its systems on two separate occasions. The company has not disclosed whether payment was involved or provided assurances that stolen data will not be released publicly.

Technology

Instructure, the software company that develops Canvas-a learning management system widely used by educational institutions worldwide-announced it has negotiated a settlement with threat actors who successfully infiltrated its systems twice. The breaches represent a significant security incident for the edtech provider, which serves schools and universities across multiple continents.

The company confirmed reaching what it termed an "agreement" with the hackers but stopped short of providing specific details about the terms or whether financial compensation was exchanged. Notably, Instructure made no public commitments or guarantees that the attackers would refrain from releasing any stolen data or conducting further extortion attempts.

The dual breach raises serious concerns about the security posture of educational technology infrastructure. Canvas processes sensitive information belonging to students, teachers, and administrators, making the incident particularly troubling for institutions relying on the platform. The lack of transparency regarding the agreement's specifics has left many users questioning the effectiveness of the settlement and the true scope of compromised information.

Instructure has not released comprehensive details about what data may have been accessed during the breaches or whether affected institutions and individuals have been notified. The company's measured public response reflects a common approach in ransomware negotiations, where organizations often remain silent to avoid encouraging copycat attacks or complicating ongoing law enforcement investigations.

This incident highlights ongoing vulnerabilities in the edtech sector, where educational institutions often depend on third-party platforms to manage critical academic and administrative functions. The breach underscores the importance of robust cybersecurity measures for companies handling educational data at scale.

Open in app →