A cyber incident over the weekend disrupted operations at Infrastructure, the company behind the Canvas learning platform, and investigators found hackers had accessed user information at some educational institutions. The attack was claimed by the ShinyHunters group, which says it stole 3.6 TB of data from more than 9,000 schools; Infrastructure said no financial data or passwords were taken. #Infrastructure #ShinyHunters
Keypoints
- A cyberattack disrupted Infrastructure’s Canvas services and prompted an immediate investigation.
- Hackers accessed names, email addresses, student ID numbers and messages for users at some institutions.
- Containment measures included revoking privileged credentials, access tokens and deploying patches, which temporarily disrupted customer tools.
- The ShinyHunters group claimed responsibility and reported stealing 3.6 TB of data affecting over 9,000 schools.
- Similar large-scale education vendor breaches, like PowerSchool’s exposure of millions of records, underscore risks from third-party providers and resulted in lawsuits and settlements.
Read More: https://therecord.media/infrastructure-education-company-canvas-incident