The cyberattack on the educational platform Canvas LMS has raised serious concerns across the United States of America, with schools and universities reportedly contacting hackers in an effort to prevent the leaked release of stolen student data.
The hacking group known as ShinyHunters allegedly stole nearly 6.65 terabytes of sensitive information from the platform. The compromised data is said to include student names, email addresses, and private messages linked to approximately 9,000 educational institutions using the learning management system.
The incident has caused widespread anxiety among students and academic institutions, particularly at a time when many students are preparing for examinations and assignment submissions through online learning platforms.
The Federal Bureau of Investigation (FBI) confirmed that it is aware of the cyber breach affecting the American education sector. However, the agency has not publicly identified the targeted platform in its official statement.
Meanwhile, Instructure, the parent company of Canvas LMS, stated that the issue has been resolved and that services on the platform have been fully restored. The company explained that hackers exploited a vulnerability in the “Free for Teacher” feature, which has now been temporarily disabled as a precautionary measure.
They have urged institutions to increase cybersecurity awareness, improve password protections, and regularly monitor systems for suspicious activity.
The incident serves as another reminder of the increasing vulnerability of online educational systems to sophisticated cyberattacks, as institutions worldwide continue to expand their digital learning infrastructure.
