Washington, D.C. — May 10, 2026
A sweeping cyberattack targeting the widely used Canvas learning management system has disrupted academic operations at thousands of institutions across the globe, forcing universities to cancel exams and raising serious concerns about data security.
The attack, attributed to the hacker group ShinyHunters, impacted an estimated 9,000 educational institutions spanning the United States, Canada, Australia, and other countries. The breach occurred during a critical academic period, leaving students and faculty locked out of coursework, assignments, and final examinations.
Canvas, developed by Instructure, is one of the world’s most widely used digital learning platforms, supporting universities and schools with online classes, assessments, and academic communication.
Ransom Messages Appear During Exams
Students reported seeing alarming messages appear on their screens during active exams, demanding ransom payments in Bitcoin. The messages claimed that the attackers had infiltrated Instructure’s systems and threatened to release stolen data if their demands were not met.
The disruption led to widespread chaos across campuses. Several universities were forced to postpone or cancel exams mid-session, while others advised students to stop logging into the platform until further notice.
Universities Across Continents Affected
In the United States, Mississippi State University suspended its Friday final exams after students lost access to ongoing submissions. One student reported losing a nearly 3,000-word exam essay when the system abruptly failed.
Meanwhile, Pennsylvania State University informed students that Canvas services were completely inaccessible, while Idaho State University canceled scheduled afternoon exams due to the outage.
The disruption extended internationally. University of Sydney issued a warning advising students not to attempt login, acknowledging the severe impact during a crucial academic period.
Services Partially Restored, Disruptions Continue
Instructure confirmed late Friday that services had been restored for most users. However, disruptions continued into Saturday at several institutions, with universities awaiting further guidance on system stability and data integrity.
The incident has sparked widespread concern among students and educators about the safety of academic data, including assignments, research, and personal information.
Growing Threat to Global Education Systems
This large-scale breach highlights increasing vulnerabilities in digital education infrastructure, especially as institutions worldwide rely heavily on online platforms for teaching and assessment.
Cybersecurity experts warn that attacks on educational systems are becoming more frequent and sophisticated, often targeting critical periods such as final exams to maximize disruption and pressure institutions into compliance.
Authorities and cybersecurity teams are continuing investigations into the breach, while affected institutions work to restore normal operations and ensure data protection.
