Physical Address
304 North Cardinal St.
Dorchester Center, MA 02124
Education technology giant Instructure has certain A data breach affects students’ private information. Hacking and extortion ring ShinyHunters He claimed responsibility for the violation.
The hackers claim they stole students’ names, personal email addresses, and messages sent between teachers and students — the same type of data that Instructure admitted to stealing.
Instructure is the latest giant company to be hacked by the ShinyHunters gang. Cybercriminals did Target universities and Cloud database companies In recent months, in efforts to steal massive amounts of people’s personal information and threaten to publish the data online if companies do not pay hackers’ ransom.
A ShinyHunters member shared a sample of the stolen data with TechCrunch, which included data from two schools in the United States, one in Massachusetts and one in Tennessee. In the Massachusetts case, the data included messages containing names, email addresses, and some phone numbers. As for the school in Tennessee, the sample included students’ full names and email addresses.
The sample did not contain passwords or other types of data that Instructure said was not affected by the breach.
TechCrunch is not naming the schools because they are not confirmed victims. Based on information appearing on their websites, both schools appear to be using Instructure’s Canvas platform, which allows customers to manage coursework, assignments, and communicate with students.
ShinyHunters also shared a list of around 8,800 schools allegedly affected by the breach. TechCrunch was unable to confirm whether all of the organizations listed were affected, nor whether they were Instructure customers. On its official website Instructure He says It has more than 8,000 organizations as clients.
When contacted by TechCrunch, Kate Holmes, a spokeswoman for Instructure, did not answer several questions about the incident, instead referring to the company’s report. Official page Where updates are posted about the hack.
On its data leak site, where ShinyHunters claims responsibility for data breaches and attempts to pressure victims to pay ransoms, hackers claim the hack affected nearly 9,000 schools around the world, and the data of 275 million people, including students, teachers and other staff. In an online chat, the ShinyHunters member told TechCrunch that the total number of unique emails included in the stolen data reached 231 million.
Financially motivated hacking groups are known to exaggerate their claims to attract media attention, as well as their victims.
As of Tuesday, instructions He said Some of its products, such as Canvas, have been restored to customers after undergoing maintenance.
When you make a purchase through the links in our articles, We may earn a small commission. This does not affect our editorial independence.