Arabic version: اختراق بيانات عالمي يؤثر على آلاف مقدمي التعليم
A significant data breach involving the Canvas learning management system has left educational institutions worldwide scrambling to respond. According to ABC News, the breach has compromised sensitive information from thousands of universities, vocational training providers, and public schools in Australia, impacting many students and teachers.
The breach has affected almost 9,000 institutions globally, including state schools in Queensland and Tasmania, as well as universities in New South Wales and South Australia. Instructure, the American company behind Canvas, acknowledged the cybersecurity incident and stated that it is working to understand the extent of the damage while minimizing its impact.
Instructure’s chief information security officer, Steve Proud, reported that the compromised data includes identifying information such as names, email addresses, and student ID numbers. Fortunately, there is currently no evidence that passwords, dates of birth, government identifiers, or financial information were involved in the breach. The company is actively investigating and will notify impacted institutions if new information arises.
The breach’s ramifications extend beyond Australia, with early estimates suggesting that more than 200 million individuals could be affected worldwide. Education Minister John-Paul Langbroek indicated that Queensland’s education department is prioritizing support for families with known vulnerabilities, including those involved with child safety authorities.
In Tasmania, the Department of Education confirmed its state schools utilize the Canvas platform, and investigations are underway to assess the breach’s impact. Meanwhile, the notorious hacking group ShinyHunters has claimed responsibility for the incident. They are known for previous attacks, including one on the developer of the Grand Theft Auto video game franchise.
As educational institutions continue to assess the fallout, authorities are urging affected parties to remain vigilant and monitor any communications from their respective schools and universities regarding the breach.
