Canvas cyberattack disrupts final exams for colleges nationwide. Here’s what to know

Schools and universities across the country are recovering from an outage that knocked down Canvas, an online platform that manages exams, course notes, lecture videos, and grades. The disruption tied to a cyberattack hit in the middle of finals period for many colleges, a high-stress time when students and instructors rely heavily on the platform.

By late Thursday, Instructure, the parent company of Canvas, said the platform was available again to most users.

The hacking group ShinyHunters claimed responsibility for the breach, said Luke Connolly, a threat analyst at the cybersecurity firm Emsisoft. On Friday, Instructure and Canvas no longer appeared on a site where ShinyHunters lists its targets.

Some schools, however, have continued to block students and teachers from accessing Canvas, citing an abundance of caution while assessing security threats.

Here’s what to know about the outage.

What is Canvas?

Schools and universities use Canvas to manage nearly all aspects of instruction. The platform acts as a gradebook, a hub for digital lectures and course materials, a discussion board for classroom projects, and a messaging platform between students and instructors.

Some courses also give quizzes and exams on the platform, or use it as a portal where final projects and papers are submitted on deadline.

Who is ShinyHunters?

ShinyHunters is a loose association of teenage and young adult hackers in the U.S. and the United Kingdom who have been linked to other large-scale cyberattacks, including one on Ticketmaster, Connolly said. On the page listing their targets, the group describes itself as “rooting your systems since ‘19,” using a term for accessing a computer system’s deepest layer.

Earlier this week, ShinyHunters said that nearly 9,000 schools and 275 million individuals’ data could be leaked if schools did not pay the ransom by a deadline of May 6. The group then extended the deadline, indicating some schools had engaged with them to negotiate.

Schools and universities, rich in personally-identifiable information on students, teachers and employees, have become prime targets for criminal hackers in ransomware attacks. Targets can be individual districts, like the Minneapolis Public Schools or Los Angeles Unified School District, or external vendor platforms like Canvas or PowerSchool that education systems increasingly rely on to manage schedules, courses and exams.

The impact on students

Though most schools seem to have restored access to Canvas, the disruptions to finals period are likely to ripple throughout the week.

The University of Massachusetts at Dartmouth said that it would postpone exams scheduled for Friday and Saturday to ensure students had time to review course materials that would not have been accessible during the shutdown.

The University of Illinois postponed all exams that were scheduled to take place Friday, Saturday or Sunday for all classes, regardless of whether the courses utilized Canvas.

And Montgomery County Public Schools in Maryland continued to limit access to Canvas on Friday, citing an abundance of caution “while we work to better understand the full impact of the incident and any potential vulnerabilities involving information connected to the platform.”

___

The Associated Press’ education coverage receives financial support from multiple private foundations. AP is solely responsible for all content. Find AP’s standards for working with philanthropies, a list of supporters and funded coverage areas at AP.org.

—Annie Ma and Heather Hollingsworth, Associated Press

View the full article