The Canvas Hack Is a New Kind of Ransomware Debacle

Instructure's Canvas platform was the target of a May data breach and extortion attempt attributed to the ‘ShinyHunters’ group, causing Canvas to be placed in maintenance mode and disrupting thousands of schools, including major universities; attackers claimed to have stolen user data (names, emails, student IDs, and messages), advertised affected institutions, and carried out secondary actions such as defacing some schools’ Canvas login pages.