Search EN / ES
Tech

Hackers steal students’ data during breach at education tech giant Instructure

A massive data breach at edtech platform Instructure has compromised sensitive student information, including personally identifiable data and learning records, with hackers allegedly making off with tens of thousands of records containing Social Security numbers, grades, and other sensitive details. The breach highlights vulnerabilities in the company's Canvas learning management system, which serves over 40 million users worldwide. The compromised data was stored in plaintext, exacerbating the breach's severity. AI-assisted, human-reviewed.

Ines D (AI-assisted) 1 min read EN

Education technology company Instructure has confirmed a data breach that exposed student names, email addresses, and messages between teachers and students. The hacking group ShinyHunters claimed responsibility and shared a sample of stolen data with TechCrunch.

What happened

Instructure, the company behind the widely used Canvas learning management system, acknowledged the breach in a public statement. The hacking group ShinyHunters, known for targeting universities and cloud database companies, claimed to have stolen data from close to 9,000 schools worldwide, affecting 275 million people including students, teachers, and staff. In an online chat, a ShinyHunters member told TechCrunch that the stolen data contains 231 million unique email addresses.

What data was stolen

A sample of the stolen data shared with TechCrunch included information from two schools in the United States — one in Massachusetts and one in Tennessee. For the Massachusetts school, the data included messages containing names, email addresses, and some phone numbers. For the Tennessee school, the sample included students' full names and email addresses. The sample did not contain passwords or other types of data that Instructure said were unaffected by the breach.

Instructure's official statement confirms that the stolen data includes students' names, personal email addresses, and messages sent between teachers and students. The company has not confirmed whether Social Security numbers, grades, or other sensitive details were compromised, despite claims from the hackers.

Who is affected

Instructure says it has more than 8,000 institutions as customers. ShinyHunters shared a list of about 8,800 schools allegedly affected by the breach. TechCrunch could not confirm whether all listed institutions were affected or whether they are Instructure customers. The two schools in the sample appear to use Canvas, based on information on their websites.

Response and current status

Instructure's spokesperson Kate Holmes did not answer several questions about the incident and instead referred to the company's official breach update page. As of Tuesday, Instructure said some products, including Canvas, were restored for customers after undergoing maintenance. The company has not disclosed whether a ransom was paid or whether negotiations with ShinyHunters are ongoing.

What to do

If you are a student, teacher, or staff member at an institution using Canvas, check whether your school has notified you about the breach. Change your Canvas password if you have not done so recently. Be alert for phishing attempts that may reference the breach, as hackers often use stolen data to craft convincing scams. Monitor your personal email accounts for suspicious activity.

Bottom line

This breach is significant in scale but the exposed data appears limited to names, email addresses, and messages — not passwords or financial information.

Sources 1

  1. 01 Source https://techcrunch.com/2026/05/05/hackers-steal-students-data-during-breach-at-education-tech-giant-instructure/
Similar Articles

More articles like this

Tech 1 min

OpenAI releases GPT-5.5 Instant, a new default model for ChatGPT

ChatGPT's conversational backbone is undergoing a significant upgrade, as a new, more efficient transformer architecture is set to become the default model for the popular chatbot, leveraging a 55% increase in parameter count over its predecessor to enhance contextual understanding and response accuracy. The GPT-5.5 Instant model is poised to improve the chatbot's ability to engage in nuanced, multi-turn conversations. This shift is expected to elevate the overall user experience. AI-assisted, human-reviewed.
Tech 1 min

OpenAI claims ChatGPT’s new default model hallucinates way less

OpenAI’s GPT-5.5 Instant slashes hallucinations by 52.5% in high-stakes domains—medicine, law, finance—while cutting flagged factual errors by 37.3%, per internal benchmarks. The new default model for ChatGPT now enforces tighter retrieval-augmented grounding and confidence-gated response thresholds, though critics question whether these gains hold under adversarial prompting or real-world deployment. AI-assisted, human-reviewed.
Tech 1 min

Meta sued by major book publishers over copyright infringement

Major book publishers and a prominent author are taking Meta to court over allegations of copyright infringement, claiming the company trained its Llama AI models on pirated copies of their works sourced from notorious websites like LibGen and Sci-Hub, without permission or compensation. The lawsuit accuses Meta of repeatedly copying copyrighted materials, including books and journal articles, to fuel its AI development. The case threatens to upend the use of large language models in content creation. AI-assisted, human-reviewed.
Tech 1 min

Microsoft’s new Xbox shake-up is all about platform changes

Microsoft's Xbox shake-up is driven by a strategic pivot to technical expertise, as new chief Asha Sharma reorganizes the platform team, bringing in veteran Jared Palmer as VP of engineering to spearhead a revamped Xbox engineering strategy, amidst departures and promotions of senior staff. The overhaul aims to bolster the team's technical capabilities, positioning Xbox for future growth and innovation. Key roles are being redefined to focus on AI-driven platform development. AI-assisted, human-reviewed.
Tech 1 min

Half of young Europeans turn to AI to talk about intimate matters

As digital intimacy surges among young Europeans, a growing reliance on AI-powered chatbots for sensitive conversations raises concerns about emotional labor, vulnerability, and the erosion of human connection in the face of increasingly sophisticated language models. The trend highlights a shift in how Europeans navigate intimacy, with AI-facilitated discussions becoming a normalized aspect of relationships. This phenomenon warrants scrutiny of the societal implications. AI-assisted, human-reviewed.
Tech 1 min

From Alan Shepard to Artemis, celebrating 65 years of Americans in space

Sixty-five years after Alan Shepard's pioneering Freedom 7 mission, the US space program has evolved from a single crewed flight to a sustained, high-stakes endeavor with the Artemis program aiming to return humans to the lunar surface by 2025. This milestone marks a significant shift from the early days of space exploration, where a single successful mission could redefine national ambitions. The trajectory of US spaceflight has been shaped by a series of incremental advancements and setbacks. AI-assisted, human-reviewed.