Thousands of schools across the United States were thrown into disarray in May 2026 after education technology company Instructure took its widely used Canvas learning platform offline following a data breach and extortion attempt by hackers operating under the name ShinyHunters.
Instructure’s chief information security officer, Steve Proud, confirmed the breach in a running incident log that began May 1, describing it as a “cybersecurity incident perpetrated by a criminal threat actor.” The compromised data for users at affected institutions included names, email addresses, student ID numbers, and messages exchanged on the platform. The hackers claim the breach affected more than 8,800 schools, though the exact scale remains unclear.
The disruption escalated sharply on Thursday, May 8, when Instructure placed Canvas — along with its Beta and Test environments — into “maintenance mode,” cutting off access for students and staff at a particularly sensitive time, with many institutions in the middle of finals and end-of-year assignments. Universities including Harvard, Columbia, Rutgers, and Georgetown sent alerts to students, and school districts in at least a dozen states were also affected. Canvas was restored for most users late Thursday evening.
The situation worsened when hackers launched a secondary wave of attacks, defacing some schools’ Canvas login pages with their own messaging. According to The Harvard Crimson, the message urged affected schools to contact the group privately to negotiate a settlement before May 12, or face having their data leaked publicly.
The ShinyHunters name has previously been linked to large-scale data breaches and the hacker collective known as the Com, though the source notes that multiple actors have adopted prominent monikers over time, sometimes with little connection to the original groups.
The incident highlights the ongoing vulnerability of education institutions to data extortion attacks, and may represent one of the most disruptive single-platform cyberattacks against U.S. schools to date.
Source: WIRED