Instructure says agreement reached with hackers after Canvas data breach

Instructure says it has reached an agreement with the hackers behind a data breach affecting its Canvas learning platform.

The company said it is continuing to investigate the incident and has apologised to those affected.

The breach involved the theft of student ID numbers, email addresses, enrolment information and messages on the platform.

Instructure said it had been informed that the stolen data had been returned and that digital confirmation of its destruction had been provided.

The company also said it had received assurances that no customers would be extorted over the stolen information.

It said the agreement covered all impacted institutions and that individual schools and universities did not need to try to engage with the hackers.

The incident matters because Canvas is used by educational institutions around the world, and the company said almost 9,000 schools, universities and other institutions were affected.

The breach also disrupted access for students, with some unable to access schoolwork or submit assessments while access to Canvas was paused.

Instructure said the cyberattack was carried out by the group ShinyHunters.

#Instructure #Canvas #ShinyHunters #databreach #cybersecurity