US lawmakers press Instructure over Canvas data breaches

US lawmakers press Instructure over Canvas data breaches

American House lawmakers are demanding explanations from education technology company Instructure following two separate data breaches of its Canvas platform, which serves millions of students. The incidents have raised concerns about security vulnerabilities in widely-used educational software.

Technology

U.S. House lawmakers have launched an investigation into Instructure, a major education technology company, demanding detailed information about security failures that led to multiple breaches of its Canvas platform. Canvas is a leading learning management system used by millions of students across educational institutions in the United States and internationally.

The breaches resulted in unauthorized access to sensitive student data, prompting congressional oversight. Lawmakers are seeking to understand how hackers were able to penetrate Instructure's systems on multiple occasions and what measures the company has implemented to prevent future incidents.

Instructure, based in the United States, provides Canvas as its flagship educational software product, serving as a critical infrastructure for digital learning in schools and universities. The data breaches have highlighted potential vulnerabilities in cloud-based educational platforms that handle sensitive information about millions of young people.

The congressional inquiry reflects growing concern among policymakers about cybersecurity standards in the education technology sector. Lawmakers want clarity on how the breaches occurred, the scope of compromised data, notification procedures followed by the company, and remediation efforts underway.

This investigation underscores the importance of robust security protocols for companies that manage educational data, particularly given the sensitive nature of student information and the reliance of institutions on such platforms for daily operations.

Open in app →