Technology

Developer of education tool Canvas issues apology after hack

By Kanishka Singh
FILE PHOTO: Students walk through campus between classes at Santa Monica College in Santa Monica, California April 4, 2012. REUTERS/Bret Hartman/File Photo

WASHINGTON, May 11 (Reuters) - ⁠The developer of Canvas, widely used by U.S. institutions for grades ⁠and class materials, issued an apology after a hack that blocked students ‌from accessing the education tool and involved student data being stolen by a cybercriminal hacking group.

"I'll start where I should: with an apology," Steve Daly, the CEO of Canvas' parent company Instructure, ​said in a blog post on Monday.

ShinyHunters, a hacking ⁠group known for data theft ⁠and extortion campaigns targeting major global companies, said in a May 3 post on ⁠its ‌website that it had stolen roughly 6.65 terabytes of Canvas data.

The data, linked to nearly 9,000 schools worldwide, included student names, email addresses ⁠and private messages between students, teachers, and other staff, ​the group added.

Student newspapers ‌across the United States reported last week the hack caused widespread disruption ⁠as students prepared ​for end-of-year tasks and assignments.

The software is used by schools for class assignments and information sharing, as well as messaging between students and school faculty.

The Instructure CEO said Canvas "is ⁠fully operational and remains safe to use."

"Over the ​past few days, many of you dealt with real disruption. Stress on your teams. Missed moments in the classroom. Questions you couldn't get answered. You deserved more consistent ⁠communication from us, and we didn't deliver it. I'm sorry for that," Daly said.

He added the company will give more consistent updates going forward.

Daly said the incident involved unauthorized access to information like usernames, email addresses, course names, enrollment information ​and messages.

Core learning data like course content, submissions and ⁠credentials was not compromised, he said.

He said the company had identified a vulnerability ​regarding support tickets in the app's "Free for Teacher" environment ‌that was exploited.

That component of the app ​has been temporarily disabled while the company completes a full security review, Daly added.

(Reporting by Kanishka Singh in Washington; Editing by Himani Sarkar)

Follow us on our official WhatsApp channel for breaking news alerts and key updates!

Next In Tech News
Wearables increasingly look to AI to predict health problems before they happen
Ex-OpenAI exec Sutskever says he spent a year gathering proof of alleged Altman dishonesty
Microsoft, Google, xAI security test details deleted from US government website
Family of Florida mass shooting victim sues OpenAI in US court
Netflix sued by Texas for allegedly spying on children, addicting users
California county sues Meta over scam ads
SoftBank's Son considers up to $100 billion investment in France, Bloomberg News reports
OpenAI creates new unit with $4 billion investment to aid corporate AI push
Shein accuses Temu of 'industrial scale' copyright breaches in UK legal battle
Alphabet, Amazon tap overseas debt markets to fund AI infrastructure push

Trending in Tech

Others Also Read

Load more

Copyright © 1995- Star Media Group Berhad [197101000523 (10894-D)]

Best viewed on Chrome browsers.