ShinyHunters claims it carried out a second breach of Instructure, the company behind the Canvas LMS, even after Instructure said the incident was contained and over. The attack allegedly exposed data from thousands of schools and institutions, including student records and private messages, while forcing Canvas offline again to contain the ongoing incident. #ShinyHunters #Instructure #Canvas #FreeForTeacher
Keypoints
- ShinyHunters says it reinfected Instructure after the company declared the breach contained.
- The intrusion reportedly exploited issues tied to Free-For-Teacher accounts.
- Canvas was taken offline again to stop the ongoing security incident.
- The stolen data may include names, emails, student IDs, and billions of private messages.
- The breach affects schools, companies, healthcare groups, and many minors using Canvas.
Read More: https://www.darkreading.com/cyberattacks-data-breaches/shinyhunters-second-attack-instructure