Instructure's Canvas learning management system faces widespread disruptions following a ransomware attack by the ShinyHunters group. The breach has affected schools nationwide, with the NYC Public School system hit particularly hard during final exam season.
Instructure confirmed that hackers exploited a security vulnerability in Canvas to modify login portals and leave extortion messages. The ShinyHunters group has claimed responsibility for the attack, which resulted in the theft of student data and operational disruptions across educational institutions.
The company paid a ransom to the threat actors, though service disruptions have persisted. The incident has drawn significant attention from federal authorities, with the U.S. House Committee on Homeland Security calling for Instructure executives to testify about the attack and security lapses that enabled it.
The NYC Public School system is simultaneously managing a separate malware attack affecting one Manhattan campus, compounding security challenges across the district. The timing of the Canvas breach during final exams has amplified its impact on students and educators relying on the platform for course materials and grade submissions.
This marks the second major cyberattack targeting Canvas within a recent period, raising questions about the platform's security infrastructure. Canvas serves millions of students globally, making it a high-value target for extortion groups. The breach highlights vulnerabilities in critical educational technology infrastructure that many institutions depend on for daily operations.
The incident underscores broader cybersecurity challenges facing the education sector, which has become increasingly targeted by ransomware groups seeking high-value data and operational leverage. Schools face particular pressure to pay ransoms quickly due to the disruption of academic calendars and student services.
Instructure has not disclosed full details about the vulnerability or timeline for complete service restoration. The company's security practices are now under congressional scrutiny as federal lawmakers examine whether adequate safeguards exist for protecting sensitive student information in education technology platforms.
Security experts recommend switching from traditional passwords to passkeys—including smartphone PINs and biometric authentication—despite user skepticism about whether a simple PIN can truly outperform complex passwords.
A school shooting survivor is suing an artificial intelligence company whose weapon detection system failed to identify a firearm during an attack. The lawsuit raises critical questions about the accuracy standards required for safety-critical AI systems.
A new Gafgyt botnet variant named C0XMO is actively targeting DD-WRT router firmware, with the capability to spread across multiple device types and processor architectures. The malware eliminates competing infections as it propagates.
The Silent Ransom Group is conducting social engineering attacks against U.S. law firms and professional services companies, stealing data within hours of initial contact through fake IT support calls, according to Mandiant.