Fecha límite de rescate de ShinyHunters para 9.000 escuelas de EE. UU.
Read, Watch or Listen
United States – The U.S. education sector faces a large-scale data extortion threat after the criminal hacking group ShinyHunters claimed to have stolen 3.6 terabytes of data from Instructure’s Canvas learning management system and set a final ransom deadline of May 12, 2026. The group says the breach affects roughly 275 million users across nearly 9,000 U.S. school systems, spanning universities and K-12 districts, and involves names, email addresses, student ID numbers and several billion private messages. The incident was first detected on May 7, 2026, and prompted a temporary shutdown of the Canvas platform as Instructure investigated the intrusion and worked to restore services. United States – Instructure reported that many universities and school districts found a ransom note posted on their Canvas homepages, as the hackers demanded an undisclosed settlement and threatened to publish the full database if the company does not pay by the May 12 deadline. The company’s investigation determined that the attackers exploited a vulnerability in Canvas’s Free-For-Teacher accounts, which allowed users to create accounts without institutional verification and use them to traverse trust boundaries into institutional tenants. Canvas services were restored by May 8, but the outage disrupted exam schedules and assignment deadlines nationwide, and Instructure has temporarily disabled the Free-For-Teacher feature as a security measure while the response continues.
Prepared by Emily Rhodes and reviewed by editorial team.
Timeline of Events
- 7 de mayo de 2026 se detecta brecha en la plataforma Canvas
- 7 de mayo de 2026 aparecen notas de rescate en las páginas de inicio
- 7 de mayo de 2026 Instructure inicia investigación del incidente
- 8 de mayo de 2026 se restaura en gran medida la funcionalidad de la plataforma Canvas
- 8 de mayo de 2026 las cuentas gratuitas para profesores se deshabilitan temporalmente
- mayo de 2026 ShinyHunters reclama robo de 3.6TB de datos
- 12 de mayo de 2026 se fija fecha límite para el pago del rescate
- mayo de 2026 exámenes nacionales y tareas interrumpidos
Why This Matters to You
Si usted o su familia utilizan Canvas para la educación, sus datos personales pueden estar en riesgo. Esto incluye nombres, correos electrónicos, identificaciones de estudiantes y mensajes privados. Es un buen momento para revisar la configuración de seguridad de su cuenta y cambiar las contraseñas.
The Bottom Line
Esta masiva violación de datos interrumpe la educación en todos los EE. UU., desde exámenes hasta tareas. Si bien Canvas ha tomado medidas para asegurar la plataforma, la amenaza persiste hasta la fecha límite para el rescate. Vale la pena reenviar si conoce a alguien en el sector educativo.
- Articles Published:
- 1
- Right Leaning:
- 0
- Left Leaning:
- 0
- Neutral:
- 1
- Distribution:
- Left 0%, Center 100%, Right 0%
No especificado en la fuente.
No especificado en el origen.
Coverage of Story:
From Left
No left-leaning sources found for this story.
From Right
No right-leaning sources found for this story.
Comments