8 sources
11h ago

Instructure Says Hackers Returned and Deleted Stolen Canvas Data

Instructure said hackers returned and digitally confirmed deletion of data taken in a ShinyHunters breach that threatened data from roughly 8,000 to 9,000 schools and about 275 million people.

Canvas Hack Aftermath: Owner Instructure Reaches Deal With Hacker Group
CNETCNET

Canvas Hack Aftermath: Owner Instructure Reaches Deal With Hacker Group

Read article
CNET
Deal reached with hackers to delete data stolen from the Canvas educational platform
ABC NewsABC News

Deal reached with hackers to delete data stolen from the Canvas educational platform

ABC News
Instructure, company behind Canvas learning platform, reaches deal with hackers to recover data
Washington TimesWashington Times

Instructure, company behind Canvas learning platform, reaches deal with hackers to recover data

Washington Times
‘Agreement’ with hackers resolves data breach on Canvas learning platform
Straight Arrow NewsStraight Arrow News

‘Agreement’ with hackers resolves data breach on Canvas learning platform

Straight Arrow News

Overview

A summary of the key points of this story verified across multiple sources.
1.

Instructure said it reached an agreement with the unauthorized actor who stole Canvas data and that the hackers returned the data and provided digital 'shred logs' confirming destruction.

2.

ShinyHunters claimed responsibility for the April 29 breach, said it stole 3.6 terabytes and threatened to leak data from roughly 8,000 to 9,000 schools and about 275 million individuals unless paid by May 6.

3.

Cybersecurity experts including Cynthia Kaiser cautioned that payment does not end the threat, and the FBI has long advised against paying ransoms, while Instructure said it is conducting forensic analysis with expert vendors.

4.

The outage locked students and faculty out of Canvas, forcing some institutions such as the University of Illinois Urbana-Champaign to move finals to Sunday, May 10, and prompting warnings about increased phishing and social engineering risk.

5.

Instructure said it will further harden its environment, conduct a comprehensive review of the data involved, and acknowledged there is no way to be certain the stolen data was erased for good.

Written using shared reports from
8 sources
.
Report issue

Analysis

Compare how each side frames the story — including which facts they emphasize or leave out.

Center-leaning sources frame the story as a disruptive cybersecurity crisis by emphasizing student impacts and implying a ransom despite company hedging. Editorial choices include loaded phrasing (“causing alarms”), prioritizing company and hacker statements, highlighting the hacker’s “the data is deleted” claim, and adding FBI warnings—together suggesting vulnerability and moral caution against paying ransoms.

Sources:ABC News·Straight Arrow News·CBS News

How we categorize media bias