> TritonInfoSec News
Home / May 09, 2026 / Story
0
#3 BleepingComputer general May 07, 2026 at 22:36 UTC

Canvas login portals hacked in mass ShinyHunters extortion campaign

By Lawrence Abrams

AI Summary

The ShinyHunters extortion group conducted a second attack against Instructure, exploiting a new vulnerability to deface Canvas login portals across hundreds of colleges and universities, with the group claiming nearly 9,000 schools' student data is at risk. The disruption forced multiple universities to reschedule final exams, causing widespread operational chaos during a critical academic period. Security teams at educational institutions using Canvas should audit their exposure and monitor for ShinyHunters ransom communications.

Read full article → https://www.bleepingcomputer.com/news/security/can…

Relevance score: 85.0/100

# More from May 09

  1. 1
    Palo Alto Networks firewall zero-day exploited for nearly a month BleepingComputer
  2. 2
    Ivanti warns of new EPMM flaw exploited in zero-day attacks BleepingComputer
  3. 4
    New Linux 'Dirty Frag' zero-day gives root on all major distros BleepingComputer
  4. 5
    Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking SecurityWeek
  5. 6
    Claude AI Guided Hackers Toward OT Assets During Water Utility Intrusion SecurityWeek
  6. 7
    Trellix source code breach claimed by RansomHouse hackers BleepingComputer
  7. 8
    Americans sentenced for running 'laptop farms' for North Korea BleepingComputer
  8. 9
    New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentials The Hacker News
  9. 10
    Chrome 148 Rolls Out With 127 Security Fixes SecurityWeek