Canvas Learning Platform Breach Affects Thousands of Schools, Including Mohawk College
A hacker group known as ShinyHunters gained unauthorized access to the Canvas learning platform on April 29 through a teacher account. Instructure, the company behind the system, reached an agreement with the group, received confirmation the data was destroyed and obtained assurances against further extortion.
koreatimes.co.krMohawk College says only non-sensitive information such as usernames, email addresses and messages were accessed in a Canvas breach that also affected thousands of other schools. The system is referred to at Mohawk College as MyCanvas. It connects students with their instructors.
In a statement, Sean Coffey, a spokesperson for Mohawk College, said the data affected included usernames, email addresses and messages. "Information such as passwords, single sign-on credentials, birth dates, home addresses, and financial information was not affected," Coffey said. He added that no other systems at the college were impacted and that students and staff were kept up to date.
The company behind Canvas, Instructure, said there was unauthorized activity on April 29 accessed through a type of teacher account. The company revoked that access and took the platform offline to investigate after more activity was detected. Thousands of colleges, universities and some K-12 schools use Canvas.
According to Instructure, the data involved may include full names, email addresses, student numbers and personal messages. ShinyHunters claimed responsibility for the attack. The group is a hacker organization behind breaches at Ticketmaster and Google's Salesforce database.
Instructure said earlier this week it reached an agreement with the hacking group. Instructure received confirmation the data was destroyed. " Cbc reported the details of both the college's statement and Instructure's response to the April 29 breach.
Key Facts
Story Timeline
5 events- 2026-04-29
Unauthorized activity detected on Canvas through a teacher account
2 sourcesInstructure · Cbc - 2026-04-29
Instructure revokes access and takes platform offline for investigation
1 sourceInstructure - 2026-05-2026
ShinyHunters claims responsibility and threatens to release data of 275 million people
1 sourceCbc - 2026-05-10
Instructure announces agreement with hacking group, confirmation data was destroyed and assurance against extortion
2 sourcesInstructure · Cbc - 2026-05-13
Mohawk College issues statement on affected data and confirms no other systems impacted
1 sourceCbc
Potential Impact
- 01
Temporary platform outage disrupted access to MyCanvas at Mohawk College and elsewhere
- 02
No evidence of compromised passwords or financial data reduces risk of identity theft
- 03
Potential exposure of personal messages and student numbers for users at thousands of institutions
Transparency Panel
Related Stories
EuronewsWorld Urban Forum 2026 Draws 57,000 Participants from 176 Countries
The 13th World Urban Forum concluded with discussions on housing, climate resilience and urban governance. Organisers reported that the sessions informed future strategic priorities.
theverge.comTrump Mobile website still lists T1 phone as American-made
The product page for the T1 phone continues to describe the device as American-made. The Verge reported that the site may conflict with FTC advertising rules. The phone was announced in June 2025.
France 24EU Discusses Readiness for Artificial Intelligence Changes
A France 24 program examined whether European Union policies can address the effects of artificial intelligence. The discussion covered potential impacts across daily life and economic sectors.