{"id":244755,"date":"2026-05-12T17:32:00","date_gmt":"2026-05-12T21:32:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/05\/12\/canvas-owner-reaches-agreement-with-threat-actors-after-data-breach\/"},"modified":"2026-05-12T19:25:07","modified_gmt":"2026-05-12T23:25:07","slug":"canvas-owner-reaches-agreement-with-threat-actors-after-data-breach","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/05\/12\/canvas-owner-reaches-agreement-with-threat-actors-after-data-breach\/","title":{"rendered":"Canvas owner reaches \u2018agreement\u2019 with threat actors after data breach"},"content":{"rendered":"<p><a href=\"https:\/\/www.highereddive.com\/news\/canvas-owner-reaches-agreement-with-threat-actors-after-data-breach\/820049\/\">Canvas owner reaches \u2018agreement\u2019 with threat actors after data breach<\/a><\/p>\n<p><a href=\"https:\/\/www.highereddive.com\/news\/canvas-owner-reaches-agreement-with-threat-actors-after-data-breach\/820049\/\">https:\/\/www.highereddive.com\/news\/canvas-owner-reaches-agreement-with-threat-actors-after-data-breach\/820049\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-12 17:32:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.highereddive.com\">www.highereddive.com<\/a><\/p>\n<p>        Listen to the article<\/p>\n<p>            <span class=\"text-to-speech__button__audio-length\">6 min<\/span><\/p>\n<p>            This audio is auto-generated. Please let us know if you have feedback.<\/p>\n<p><span><span><span><span><span><span>Instructure \u201c<\/span><\/span><\/span><\/span><\/span><\/span><span><span><span><span><span><span><span><span>reached an agreement<\/span><\/span><\/span><\/span><\/span><\/span><\/span><\/span><span><span><span><span><span><span>\u201d with an unauthorized threat actor on Monday, just days after cybercriminals twice \u2014 within a little over a week \u2014 infiltrated the ed tech provider\u2019s Canvas learning management system.\u00a0\u00a0<\/span><\/span><\/span><\/span><\/span><\/span><\/p>\n<p><span><span><span><span><span><span>The latest cybersecurity incident on Thursday caused <\/span><\/span><\/span><\/span><\/span><\/span><span><span><span><span><span><span><span><span>sweeping disruptions to colleges<\/span><\/span><\/span><\/span><\/span><\/span><\/span><\/span>\u00a0<span><span><span><span><span><span>and K-12 schools nationwide after the cybergang ShinyHunters posted a message that was seen by some users on their Canvas platforms. The post said that colleges could negotiate a settlement with ShinyHunters by Tuesday \u2014 the same deadline given to Instructure.<\/span><\/span><\/span><\/span><\/span><\/span><\/p>\n<p><span><span><span><span><span><span>Cybersecurity experts suggest Instructure\u2019s agreement appears to be a ransomware payment, a practice the <\/span><\/span><\/span><\/span><\/span><\/span><span><span><span><span><span><span><span><span>FBI strongly discourages<\/span><\/span><\/span><\/span><\/span><\/span><\/span><\/span><span><span><span><span><span><span>.\u00a0<\/span><\/span><\/span><\/span><\/span><\/span><\/p>\n<p><span><span><span><span><span><span>Instructure said that as a part of its agreement with an unnamed threat actor, the stolen data was returned to the ed tech company, and it had received digital confirmation of data destruction in the form of \u201cshred logs.\u201d The threat actor said no Instructure customers will be extorted from this incident, Instructure said, and no individuals impacted by the breach will need to engage with them.<\/span><\/span><\/span><\/span><\/span><\/span><\/p>\n<p><span><span><span><span><span><span>\u201cWhile there is never complete certainty when dealing with cyber criminals, we believe it was important to take every step within our control to give customers additional peace of mind, to the extent possible,\u201d Instructure said in a Monday statement on its website.\u00a0<\/span><\/span><\/span><\/span><\/span><\/span><\/p>\n<h3 class=\"standard-heading\"><span><span><span><span><span>No \u2018guarantee\u2019 data will be deleted<\/span><\/span><\/span><\/span><\/span><\/h3>\n<p><span><span><span><span><span><span>ShinyHunters has been confirmed as the group behind the Canvas cyberattack, as it posted about the initial incident to its leak site on May 3, said Rebecca Moody, head of data research at Comparitech, a cybersecurity and online privacy product review website, in a&#8230;<\/span><\/span><\/span><\/span><\/span><\/span><\/p>\n<p><a href=\"https:\/\/www.highereddive.com\/news\/canvas-owner-reaches-agreement-with-threat-actors-after-data-breach\/820049\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Canvas owner reaches \u2018agreement\u2019 with threat actors after data breach https:\/\/www.highereddive.com\/news\/canvas-owner-reaches-agreement-with-threat-actors-after-data-breach\/820049\/ Publish Date: 2026-05-12 17:32:00&#8230;<\/p>\n","protected":false},"author":1,"featured_media":244756,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/imgproxy.divecdn.com\/tOqPwLTyb_LMNE5tf52AiHIezDFl2URR0n9N3WlK8dQ\/g:ce\/rs:fit:770:435\/Z3M6Ly9kaXZlc2l0ZS1zdG9yYWdlL2RpdmVpbWFnZS9HZXR0eUltYWdlcy0xMzQzMzQ5NTU4LmpwZw==.webp","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[30,34],"class_list":["post-244755","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-breach","tag-threat-actor"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/244755"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=244755"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/244755\/revisions"}],"predecessor-version":[{"id":244758,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/244755\/revisions\/244758"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/244756"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=244755"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=244755"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=244755"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}