recentbreaches.com

Recent Breaches › Instructure Pays Ransom to ShinyHunters to Prevent Canvas Data Leak

HIGH severity

Instructure Pays Ransom to ShinyHunters to Prevent Canvas Data Leak: What Was Exposed & What To Do

Reported May 12, 2026. Approximately 275M people affected.

The Instructure Pays Ransom to ShinyHunters to Prevent Canvas Data Leak (reported May 12, 2026) exposed names, email-addresses, student-ids and private-messages belonging to roughly 275M people. If you have an account with them, your information may now be circulating on the open web and with data brokers. Here’s exactly what happened, how to check if you were affected, and what to do next.

Were you caught in this breach?
Check your email against this and other known breaches — free, 30 seconds.
Scan my email free →

What was exposed

How to check if you were affected

Run a free exposure scan with your email address. It matches you against known breach datasets and shows where your information has surfaced. Check if you’re exposed →

What to do if you were in the Instructure Pays Ransom to ShinyHunters to Prevent Canvas Data Leak

How this breach connects

Company

Attributed to

Method

Frequently asked questions

Was my data in the Instructure Pays Ransom to ShinyHunters to Prevent Canvas Data Leak breach?

The fastest way to know is a free exposure scan — it checks your email address against known breach data, including recent incidents like this one.

What information was exposed in the Instructure Pays Ransom to ShinyHunters to Prevent Canvas Data Leak?

The reported exposed data includes: names, email-addresses, student-ids, private-messages, enrollment-data.

What should I do after the Instructure Pays Ransom to ShinyHunters to Prevent Canvas Data Leak breach?

Change your password for that account and anywhere you reused it, turn on two-factor authentication, and remove your personal information from data-broker sites so it can’t be combined with the leaked data.

More recent breaches

ShinyHunters Extorts Instructure/Canvas in Massive EdTech BreachMay 7, 2026Mount Royal University Listed by cmdorganization Ransomware GroupJuly 7, 2026Richmont Graduate University Listed by AiLock Ransomware GroupJuly 7, 2026stedwardscatholicfirstschool.co.uk Listed by safepay Ransomware GroupJuly 6, 2026

Read GalaxyWarden’s full analysis of the Instructure Pays Ransom to ShinyHunters to Prevent Canvas Data Leak →

Source: The Hacker News

Attributions to threat groups and methods reflect public reporting and, in some cases, unverified claims made by the groups themselves; they may be incomplete or later revised. Recent Breaches and GalaxyWarden are independent and are not affiliated with, and do not endorse, any company or group named on this page. This information is aggregated from public sources for awareness only and is not legal, security, or investment advice.