Canvas hack: company pays criminals to delete students' stolen data

§ 01

Briefing Summary

AI-generated

NEWSAR · AI

Instructure, the company behind the Canvas learning management system, has confirmed it paid cybercriminals to prevent the release of stolen student and university data. The hack, which occurred last week, disrupted services at approximately 9,000 institutions across the US, Canada, Australia, and the UK. Hackers had threatened to publish 3.5 terabytes of sensitive information. Instructure stated its primary motivation was to protect student and staff data, reaching an agreement with the attackers who claim to have deleted the data and will not extort individuals. This action contradicts advice from law enforcement agencies, which caution that paying criminals can encourage further attacks and offers no guarantee of data deletion.

Confidence 0.90Sources 1Claims 5Entities 8

§ 02

Article analysis

Model · rule-based

Framing

Technology

Economic Impact

Tone

Mixed Tone

AI-assessed

CalmNeutralAlarmist

Factuality

0.80 / 1.00

Factual

LowHigh

Sources cited

1

Limited

FewMany

§ 03

Key claims

5 extracted

01

Instructure's primary motivation was protecting student and staff data.

quoteInstructure

Confidence

1.00

02

Paying cybercriminals goes against the advice of law enforcement agencies.

factualarticle

Confidence

1.00

03

The company behind Canvas paid hackers not to publish stolen student data.

factualInstructure

Confidence

1.00

04

Hackers threatened to publish 3.5 terabytes of stolen student and university data.

statisticarticle

Confidence

0.90

05

The cyber-attack affected an estimated 9,000 institutions in the US, Canada, Australia, and the UK.

statisticarticle

Confidence

0.90

§ 04

Full report

1 min read · 194 words

The company behind the popular Canvas software, which was hacked last week causing major disruption at thousands of universities and colleges, has paid the hackers not to publish stolen data online.The cyber-attack affected an estimated 9,000 institutions in the US, Canada, Australia and the UK, with exams disrupted after the Canvas service went down.The hackers threatened to publish 3.5 terabytes of student and university data they had stolen in the breach.Instructure, the maker of Canvas, has now confirmed it has "reached an agreement" with the hackers, who have said they deleted the data and promised not to extort any students or institutions.Paying cyber criminals goes against the advice of law enforcement agencies around the world, as it can fuel further attacks and offers no guarantee the data has been deleted.In previous cases, criminals have accepted ransom payments but lied about destroying stolen data, instead keeping it for resale.For example, when the notorious LockBit ransomware group was hacked by the National Crime Agency, police found stolen data had not been deleted even after payments had been made.Instructure said in a statement on its website that protecting students' and education staff data was its primary motivation.

§ 05