<img height="1" width="1" style="display: none" alt="" src="https://px.ads.linkedin.com/collect/?pid=1098858&amp;fmt=gif">

ShinyHunters Strikes Instructure Twice, Disrupting Finals Week for Millions

ShinyHunters breach Canvas twice, impacting 275M users globally. Massive data theft sparks security concerns for educational networks.
Content Team
By Content Team

The ShinyHunters cybercrime gang has breached Instructure's Canvas learning platform twice in quick succession, affecting nearly 9,000 educational institutions and 275 million users during final exam week. Despite Instructure claiming the initial April 25 attack was contained by May 2, hackers struck again on May 7, forcing the company to take Canvas offline once more.

The attackers exploited vulnerabilities in "free-for-teacher" accounts and claim to have stolen 3.65TB of data, including names, emails, student IDs, and billions of private messages between students and teachers. The breach spans universities, K-12 schools, and major corporations like Amazon and Apple across multiple countries.

Students report being locked out during critical study periods, with ransom messages appearing instead of their grades. The incident raises serious concerns about data protection for minors and the security standards expected from platforms serving such massive educational networks.

Source: Dark Reading
Share this article
Share on facebook Share on linkedin Share on twitter Share on email
blog_book_a_demo_cta_3x
Have questions about protecting your software?
Our escrow experts are standing by to help.
Book a free demo
YOU MAY ALSO LIKE
North Korean Hackers Exploit VS Code to Remotely Control Victims' Computers
Jan 23, 2026
Google Rushes Chrome Security Update to Fix Critical WebView Vulnerability
Jan 7, 2026
Hundreds of Thousands Hit in Kensington and Chelsea Council Cyber Attack
Jan 15, 2026
Hackers Exploit Critical cPanel Flaw to Breach Military Servers and Steal 4GB of Sensitive Data
May 3, 2026