Canvas' parent company reaches agreement with hacking group behind breach
· CNA · JoinRead a summary of this article on FAST.
Get bite-sized news via a new
cards interface. Give it a try.
Click here to return to FAST Tap here to return to FAST
FAST
May 12 : The hacking group that targeted the Canvas educational tool and the parent company that owns the software struck a deal to secure stolen student and school data, the company said in a statement late Monday.
In a statement posted to its website, the company said it "reached an agreement with the unauthorized actor involved with this incident." As part of the agreement, all data was returned to the company, the company received digital confirmation of data destruction, and the company was informed that "no Instructure customers will be extorted as a result of this incident, publicly or otherwise."
The agreement covers all affected Instructure customers, the statement said, "and there is no need for individual customers to attempt to engage with the unauthorized actor." Reuters reported on Friday that schools and organizations whose data was included in the hack were in contact with the group trying to prevent their data from being released.
A representative for ShinyHunters, the group that claimed responsibility for the breach, said in a message to Reuters that the "data is deleted, gone. The company and its customers will not further be targeted or contacted for payment by us."
CNA Games
Guess Word
Crack the word, one row at a time
Buzzword
Create words using the given letters
Mini Sudoku
Tiny puzzle, mighty brain teaser
Mini Crossword
Small grid, big challenge
Word Search
Spot as many words as you can
Show More
Show Less
The representative declined to answer specific questions about the agreement.
TO PAY OR NOT
Kurtis Minder, a ransomware negotiator, said it's "fair to conclude that some money was sent."
The decision of whether to pay can be complex, Minder said, and depends on case specifics, the company's values and the type of criminal group making the demand.
"You could make an argument in either direction," Minder said on Tuesday. "Understanding what happens to the money after you send it is paramount."
ShinyHunters, a hacking group with a history of targeting global companies for extortion, said in a May 3 post on its website that it had stolen data from Instructure's Canvas platform, which schools use for class assignments, information sharing and messaging.
The hacking group claimed to have student names, email addresses and messages related to nearly 9,000 schools. On May 5, the hacking group said in a message that Instructure had not been in contact with it, and posted a list of schools and districts whose data the group claimed was stolen. In a status message the following day, Instructure said the situation was resolved and the platform was fully operational.
On Thursday, students at multiple schools reported finding notes from ShinyHunters regarding the hack. Instructure pulled Canvas offline for several hours before restoring it.
Also on Monday, the House Homeland Security Committee sent a letter to Instructure CEO Steve Daly requesting he or another senior executive brief the committee about the multiple intrusions claimed by ShinyHunters, questions about the nature and amount of data stolen, what the company has done in response, and "the adequacy of the company's coordination with federal law enforcement and CISA," referring to the Department of Homeland Security's Cybersecurity and Infrastructure Security Agency.
An Instructure spokesperson did not immediately respond to a request for comment on the request for a congressional briefing or the nature of the agreement struck with ShinyHunters.
Newsletter
Week in Review
Subscribe to our Chief Editor’s Week in Review
Our chief editor shares analysis and picks of the week's biggest news every Saturday.
Sign up for our newsletters
Get our pick of top stories and thought-provoking articles in your inbox
Get the CNA app
Stay updated with notifications for breaking news and our best stories
Get WhatsApp alerts
Join our channel for the top reads for the day on your preferred chat app