Instructure data breach: ShinyHunters says it stole data and private messages from 275 million teachers and students

Blogs Technology
Posted 2026-05-04 17:00:16
0
21

ShinyHunters: Instructure breach affects 275 million teachers and students

ShinyHunters have struck once again. This time, the hacker group says it has breached systems belonging to one of the biggest educational tech companies.

Edtech giant Instructure, the company behind the popular Learning Management System (LMS) Canvas, announced that it was experiencing a service disruption on April 30. 

The next day, on May 1, the company confirmed that it experienced a "cybersecurity incident perpetrated by a criminal threat actor." 

Instructure largely addressed the issues by May 2 and shared that it would continue to monitor its platforms and investigate how the cyberattack occurred. The company said it patched its security system, revoked certain credentials and access tokens, and rotated API keys "out of an abundance of caution."

ShinyHunters, the now-infamous hacking collective known for social engineering and ransomware, claimed responsibility and uploaded 3.65 terabytes of related stolen data to its website on May 3, as reported by SecurityWeek.

What data was stolen?

Instructure says that passwords and other private credentials were not stolen in the breach. 

Mashable Light Speed

However, the affected data reportedly includes users' names, email addresses, student IDs, and private messages exchanged on the platform.

According to ShinyHunters, the stolen data is associated with 275 million users at nearly 9,000 schools around the world. These users include students, teachers, and staff.

ShinyHunters also claimed that billions of private messages between users, including students and teachers, were stolen as well, according to Bleeping Computer. The group says Instructure's Salesforce instance was also breached, and related data was stolen.

ShinyHunters have been involved with several high-profile data breaches recently. Companies ranging from the bakery chain Panera Bread to the security firm ADT have all experienced data breaches tied to the group. Anime streaming service Crunchyroll and the dating app Bumble have been breached by ShinyHunters as well.

Last month, ShinyHunters were also behind the breach into Rockstar Games, the video game developer behind the GTA series, including the long-awaited Grand Theft Auto VI.

All of these ShinyHunters data breaches have occurred since the beginning of the year.

Want to learn more about getting the best out of your tech? Sign up for Mashable's Top Stories and Deals newsletters today.

Please log in to like, share and comment!
Zoeken
Categorieën
Read More
Food
COPYCAT KITKAT BARS
COPYCAT KITKAT BARS We saw this recipe a few times on social media and decided to give it a...
By Test Blogger1 2026-02-21 18:00:09 0 1K
Technology
How to disable automatic content recognition and data tracking on your smart TV
Disable Automatic Content Recognition on Fire TV...
By Test Blogger7 2026-04-17 00:00:20 0 467
Technology
Samsung Galaxy S26 vs. Google Pixel 10: Comparing specs, prices
Samsung Galaxy S26 vs. Google Pixel 10: Comparing specs, price...
By Test Blogger7 2026-02-25 19:00:23 0 1K
Food
9 Foods That Fueled Music Icon Prince
9 Foods That Fueled Music Icon Prince...
By Test Blogger1 2026-05-03 21:00:08 0 58
Music
The Best Prog Metal Band for Each Letter of the Alphabet
The Best Prog Metal Band for Each Letter of the AlphabetMark Maryanovich / Mariano Regidor, Getty...
By Test Blogger4 2026-03-26 12:00:13 0 919
© 2026 Sngine-YND Dutch
English Arabic French Spanish Portuguese Deutsch Turkish Dutch Italiano Russian Romaian Portuguese (Brazil) Greek
About Voorwaarden Privacy Contact Us Bedrijvengids