Instructure与黑客达成和解,以阻止大规模学生数据泄露
Read, Watch or Listen
U.S.-based educational technology firm Instructure has confirmed it struck a formal agreement with the cybercrime group ShinyHunters after a massive breach of its Canvas learning management system. Detected in early May 2026, the incident exposed 3.65 terabytes of data tied to about 275 million users at 8,809 universities and K–12 institutions worldwide. On May 7, attackers defaced the Canvas login page with a ransomware note during final exams at several U.S. universities. Instructure says passwords, birth dates, and financial details were not taken but acknowledges theft of private messages, names, student IDs, and emails. Schools are now auditing local systems.
Prepared by Emily Rhodes and reviewed by editorial team.
Timeline of Events
- 2026年5月初 Instructure 检测到未经授权的 Canvas 访问
- 2026年5月7日 ShinyHunters 篡改 Canvas 登录页面
- 2026年5月7日 勒索软件通知扰乱大学考试
- 2026年5月初 攻击者窃取 3.65 TB 数据
- 2026年5月初 2.75 亿用户记录泄露
- 2026年5月初 免费教师账户最初被利用
- 2026年5月11日 Instructure 发布公开道歉声明
- 2026年5月中旬 公司宣布和解、数据销毁
Why This Matters to You
此次泄露事件波及数百万学生和教育工作者。如果您或您的家人使用 Canvas,您的私人消息、姓名、学生 ID 和电子邮件可能已被泄露。请检查您的账户是否有异常活动。请更改您的密码并检查您的隐私设置。
The Bottom Line
Instructure 与 ShinyHunters 的和解并未撤销此次泄露事件。这 stark 地提醒我们在数字时代网络安全的重要性。请警惕地保护您的个人信息。如果您认识教育行业的人,值得转发。
- Articles Published:
- 1
- Right Leaning:
- 0
- Left Leaning:
- 0
- Neutral:
- 1
- Distribution:
- Left 0%, Center 100%, Right 0%
未在源中指定。
源中未指定。
Coverage of Story:
From Left
No left-leaning sources found for this story.
From Right
No right-leaning sources found for this story.
Comments