Unbiased AI-powered news
U.S. House Homeland Security Committee lawmakers are seeking testimony from Instructure after hackers breached the education technology company's systems twice and stole personal data from millions of students. The committee cited repeated use of the same vulnerability and questioned the company's response and coordination with federal authorities.
ibtimes.comU.S. House lawmakers are demanding that representatives from Instructure testify about the company's response to two cyberattacks that allowed hackers to steal personal data from millions of students worldwide. The House Homeland Security Committee is investigating the incidents, citing its jurisdiction over government activities relating to homeland security.
The committee's chair wrote in a letter to the company that the panel seeks details on how hackers broke into Instructure's systems on both occasions, the types of data taken, the company's response to the attacks, and its process for notifying affected schools.
The letter also asks about the adequacy of Instructure's coordination with the U.S. cybersecurity agency CISA, which has been called in to help with the incident. The committee cited reporting by TechCrunch in its letter. Instructure makes the Canvas school information portal software used by educational institutions.
The company faced criticism after it acknowledged that the hackers used the same vulnerability to steal sensitive student data and later deface school login pages.
This week Instructure confirmed it reached an agreement with the hackers. The company stated that the hackers provided evidence they had deleted the stolen data. A representative for the ShinyHunters hackers told TechCrunch that the group would not continue to extort the company or its customers. The representative declined to say how much the company had paid as ransom.
The committee chair stated that the second breach by the same hackers raises serious questions about the company's incident response capabilities and its obligations to the institutions and individuals whose data it holds. The letter described the scale and timing of the breaches, along with the company's inability to contain the threat actor after the initial intrusion, as systemic vulnerabilities the committee has a responsibility to examine.
Instructure has not said whether it will respond to the letter or provide testimony. A company spokesperson did not respond to a request for comment.
These outlets didn't split into competing frames — coverage was uniform.
news.sky.comThe European Commission is reviewing expert recommendations for phased restrictions on children's social media access. President Ursula von der Leyen said new legislation could be proposed after the summer.
The European Union sanctioned nine people and four entities on July 13, 2026. Britain sanctioned 24 people and entities the same day over a network active since 2010.
app.buzzsumo.comPresident Donald Trump directed Treasury Secretary Scott Bessent and Commerce Secretary Howard Lutnick to examine Australia's superannuation model. The move came during July 6 meetings focused on expanding U.S. retirement options. Fortune reported the announcement alongside data…