The company that operates the online learning system Canvas said it struck a deal with hackers to delete the data they pilfered in a cyberattack that created chaos for students, many of them in the middle of finals.Instructure, the parent company of Canvas, said in an online post that it “reached an agreement with the unauthorized actor involved in this incident”.The disruption caused panic last week among students and faculty members when they were locked out of a platform they rely on to manage grades and access course notes and assignments. Schools and universities delayed final exams in response to the breach.The company didn’t provide any details on the agreement, including whether it involved a payment, and didn’t elaborate who was behind the hack. Instructure temporarily took the system offline while it investigated, locking out students and faculty.A hacking group named ShinyHunters claimed responsibility for last week’s breach, threatening to leak data involving nearly 9,000 schools worldwide and 275 million individuals if schools did not pay a ransom by 6 May. The group then extended the deadline, indicating some schools had engaged with them to negotiate.As part of the deal, the data was returned to Instructure. The company said on Monday that it also received “digital confirmation” that the hackers destroyed any remaining copies, in the form of “shred logs”.The company acknowledged that there was no way to be sure that the data was erased for good, and said it took action because of concerns about potential publication of the data.“While there is never complete certainty when dealing with cyber criminals, we believe it was important to take every step within our control to give customers additional peace of mind, to the extent possible,” Instructure said.The data breach appeared to involve student ID numbers, email addresses, names and messages on the Canvas platform, Instructure’s chief information security officer, Steve Proud, said earlier this month. The company found no evidence that passwords, dates of birth, government identification or financial information were compromised, it said.The company said it was working with “expert vendors” to do a forensic analysis, “further harden” its systems and carry out a “comprehensive review of the data involved”.Schools and universities use Canvas to manage nearly all aspects of instruction. The platform acts as a grade book, a hub for digital lectures and course materials, a discussion board for classroom projects, and a messaging platform between students and instructors.Some courses also give quizzes and exams on the platform, or use it as a portal where final projects and papers are submitted on deadline.
SRCThe Guardian - World News
LANGEN
LEANCenter-Left
WORDS424
ENT4
TUE · 2026-05-12 · 16:35 GMTBRIEF NSR-2026-0512-75701
NSR-2026-0512-75701News Report·EN·Technology
Canvas platform strikes deal with hackers to delete students’ stolen data
Instructure, the company behind the Canvas learning platform, has reached an agreement with hackers responsible for a recent cyberattack. The breach disrupted access to the platform for students and faculty, leading to delayed final exams.
Associated PressThe Guardian - World NewsFiled 2026-05-12 · 16:35 GMTLean · Center-LeftRead · 2 min
The Guardian - World NewsFIG 01
Reading time
2min
Word count
424words
Sources cited
2cited
Entities identified
4entities
Quality score
100%
§ 01
Briefing Summary
AI-generatedNEWSAR · AI
Instructure, the company behind the Canvas learning platform, has reached an agreement with hackers responsible for a recent cyberattack. The breach disrupted access to the platform for students and faculty, leading to delayed final exams. A hacking group named ShinyHunters claimed responsibility, threatening to leak stolen data from nearly 9,000 schools. As part of the deal, the pilfered data, including student names, email addresses, and ID numbers, was returned to Instructure, with hackers providing digital confirmation of data destruction. While Instructure acknowledges there's no absolute certainty of complete erasure, they took action to mitigate potential data publication and are conducting a forensic analysis to enhance system security.
Confidence 0.90Sources 2Claims 5Entities 4
§ 02
Article analysis
Model · rule-basedFraming
Technology
Human Interest
Tone
Mixed Tone
AI-assessed
CalmNeutralAlarmist
Factuality
0.80 / 1.00
Factual
LowHigh
Sources cited
2
Limited
FewMany
§ 03
Key claims
5 extracted01
Instructure acknowledged there is no way to be sure that the data was erased for good.
factualInstructure
Confidence
1.00
02
Instructure, the parent company of Canvas, reached an agreement with the unauthorized actor involved in a cyberattack.
factualInstructure
Confidence
1.00
03
Schools and universities delayed final exams in response to the breach.
factual
Confidence
0.90
04
The data returned to Instructure included student ID numbers, email addresses, names, and messages.
factualInstructure
Confidence
0.90
05
A hacking group named ShinyHunters claimed responsibility for the breach, threatening to leak data involving nearly 9,000 schools worldwide and 275 million individuals.
factualShinyHunters
Confidence
0.90
§ 04
Full report
2 min read · 424 words§ 05
Entities
4 identifiedKey playerOppositionContextPositiveNeutralNegative
§ 06
Keywords & salience
10 termscanvas platform
1.00
data breach
0.90
cyberattack
0.90
stolen data
0.80
hackers
0.80
instructure
0.70
online learning system
0.70
negotiation
0.60
ransom
0.50
forensic analysis
0.40
§ 07
Topic connections
Interactive graph No topic relationship data available yet. This graph will appear once topic relationships have been computed.