Hackers reportedly targeted multiple school login pages connected to Instructure’s Canvas platform after claiming responsibility for another cyberattack on the education technology company. The incident comes shortly after Instructure disclosed a separate data breach involving student information.
According to reports, the cybercrime group ShinyHunters altered login pages for several schools using Canvas, a learning management platform widely used by schools and universities for coursework, assignments, and communication. TechCrunch observed messages posted on at least three affected school login portals, where hackers appeared to inject malicious HTML code to modify the pages.
Earlier this week, Instructure confirmed that hackers had accessed sensitive student data, including names, personal email addresses, student ID numbers, and private messages exchanged between teachers and students. The company stated that it had not found evidence suggesting passwords, government identification details, or financial information were compromised.
The latest attack caused disruptions for schools and universities during a critical academic period, with many institutions preparing for final examinations. Some universities temporarily disabled access to Canvas or redirected students away from login pages as a precautionary measure. Institutions across the United States and Australia were reportedly affected by the incident.
ShinyHunters claimed that the breach potentially impacted data linked to nearly 9,000 schools and millions of users worldwide, although the full scale of the attack has not been independently verified. The group also allegedly issued ransom demands, warning that stolen data could be leaked publicly if payments were not made before a specified deadline.
Instructure has placed parts of the Canvas system into maintenance mode while continuing its investigation into the incident. Cybersecurity experts have compared the attack to other large-scale education sector breaches that have increasingly targeted student data and school infrastructure in recent years.
