The US House Committee on Homeland Security is seeking a briefing from Instructure after cyberattacks disrupted Canvas and exposed details about two intrusions tied to the ShinyHunters extortion group. Instructure says the incident has been contained, Free-For-Teacher accounts were temporarily shut down, and stolen data was recovered and erased from the attackersβ servers. #Instructure #Canvas #ShinyHunters #FreeForTeacher
Keypoints
- The US House Committee on Homeland Security wants answers from Instructure about the Canvas attacks.
- An initial intrusion on April 29 disrupted services tied to API keys.
- Hackers returned on May 7 and defaced school login portals.
- ShinyHunters claimed the attack and alleged theft of 3.65 terabytes of data.
- Instructure says the incident is contained and Free-For-Teacher accounts were exploited in both intrusions.
Read More: https://www.securityweek.com/government-to-scrutinize-instructure-on-canvas-disruption-data-breach/