ShinyHunters escalates Canvas attacks with school login defacements

ShinyHunters, after allegedly stealing hundreds of millions of student and staff records from Instructure’s Canvas service, exploited another vulnerability to deface hundreds of schools' Canvas login portals with ransom messages and a May 12 extortion deadline; the report advises affected users to reset passwords and enable MFA and urges schools to coordinate with Instructure, review SSO integrations, and prepare communications.