Belitsoft. Software Development Company
Belitsoft > Canvas Gets Hacked and Goes Down

Canvas Gets Hacked and Goes Down

Updated May 08, 2026 , Published May 08, 2026

Hackers have begun a cyberattack against Instructure's Canvas, a cloud-based learning management system used at thousands of schools and universities. The outage could not have come at a worse time for students and teachers, three weeks before the end of the school year, right in the middle of final exams. There are questions about the security of customer data.

Contents
Canvas Gets Hacked and Goes Down

Much of American education was running on maintenance  

The major American universities were in trouble: Harvard, Columbia, Rutgers, Princeton, Penn State, UCLA, University of Wisconsin-Madison, University of Michigan, Northwestern, University of Chicago, University of Illinois Chicago, and the wider University of Illinois system, Georgetown, Kent State, Union College in New York, Duke, University of Maryland and Barnard College.  

Problems were also reported in K-12 districts in California, Florida, Georgia, Oklahoma, Oregon, Nevada, North Carolina, Tennessee, Utah, Virginia and Wisconsin. 

Penn State warned students that Canvas access may not be restored within 24 hours, and canceled previously scheduled tests. James Madison University moved its tests from Friday to Wednesday.  

The outage couldn't have come at a worse time for students 

Anish Garimidi, a University of Pennsylvania student, said it was stressful to lose study resources right before exams. Georgetown student Minhal Nazeer was home in Kentucky working on online projects, though the outage worked out for her: she got deadline extensions.  

Professors scrambled: some of them asked students to send assignments via email, others gave extensions. But for seniors already busy with end-of-year events, the loss of even a day of study time was still a sting. 

"The incident showed just how much classwork now depends on one cloud LMS platform," said Belitsoft CIO Dzmitry Baraishuk. "Without properly implemented security measures, a single hack can affect millions of students at once."

What Was Compromised

Instructure first reported the breach on May 1, though the attack actually began on April 30, when hackers exploited a vulnerability in its systems. 

CISO Steve Proud said forensics found that the stolen data included Canvas usernames, personal email addresses, student ID numbers, and messages between teachers and students. Passwords, birth dates, government IDs, and financial data weren't taken, the company said, and it's calling the incident a criminal attack. 

Instructure said it had contained the breach by May 2, and on Wednesday, May 6, declared Canvas fully operational after applying security patches. 

This was quickly shown to be false. By Thursday, the company's status page flagged login issues, and several of its platforms were placed into maintenance mode. Students were unable to access their ePortfolios, and other students encountered "Too many requests" errors when trying to access Canvas, Canvas Beta, and Canvas Test. 

Instructure's status page stated the incident was still unfolding, but service resumed for most users by Thursday evening. 

Soon after, hackers attempted to extort the company again by injecting malicious HTML into login pages. They broke into multiple schools' Canvas login pages and defaced the login screens. The defaced pages appeared on three school portals, according to TechCrunch, and Harvard's Canvas page was changed to show the list of affected schools and tell readers to contact the hackers. 

The modified pages claimed that hackers had gained access to Instructure's networks again, contradicting Instructure's statement that the last update had fixed the issues. 

The Ransom Threat

Hackers gave Instructure a deadline: if Instructure didn't come to the table, stolen data would be made public on May 12. The message named affected schools including Duke University and the University of Maryland, and urged them to bring in cybersecurity experts and lean on Instructure to negotiate. 

In a ransom note posted on a ransomware-tracking site, the group said they're ready to dump troves of private messages between students and teachers.

Instructure said the attackers exploited a vulnerability in its systems and stole API keys in the original April 30 break-in. When the hackers struck again a week later, defacing school login pages, the company said they got in through its Free-For-Teacher accounts, which it then shut down to contain the damage. 

Hackers also claim they broke into Instructure's Salesforce system and pulled more data from there. This is the second time hackers  have breached Instructure in eight months.

How Big Was the Breach?

The hackers said they hit nearly 9,000 schools worldwide, stealing billions of private messages and records. 

One report puts the figure of affected people at 231 million. Another says there are more than 275 million students, teachers and staff. 

None of these figures have been verified, and the actual total will not be known until the investigation is over.

The Bigger Picture

It wasn't surprising to see Canvas get hit. Cybersecurity researchers have warned for years that schools are an obvious target. They have grades, medical records, financial aid forms and personal details about minors but they spend a fraction of what banks or government agencies spend on defense. 

Minneapolis Public Schools, LA Unified, and PowerSchool all learned this lesson the hard way. Criminals have discovered that education pays.

Most of the education sector is dependent on a few vendors and gangs are becoming increasingly aggressive. If you target one platform, you take out thousands of schools.

The attack is part of a wider cybercrime problem that governments are still not taking seriously enough.

What Comes Next

Canvas is back up and available. The hard questions are not answered. Schools need to decide whether they want one vendor to have that much power. Someone needs to explain why assignments, grades, lecture recordings, private messages, and information about minors all exist in one place.

Never miss a post! Share it!
# LMS
Author
Written by
Chief Innovation Officer / Partner
I've been leading a department specializing in custom software development for 20 years.
5.0
1 review

Rate this article

Leave a comment
Your email address will not be published.

Recommended posts

Belitsoft Blog for Entrepreneurs
What is Artificial Intelligence? AI vs Traditional Software
What is Artificial Intelligence? AI vs Traditional Software
According to the results of the recent Gartner’s benchmarked survey “AI Strategy: Where Your Competitors Are Investing”, there is a growing number of companies that are planning to build out and deploy AI. A deep understanding of the main difference between the possibilities of AI software and “traditional” software can help to separate AI hype from reality.
Dmitry Baraishuk• 14 min read
Artificial Intelligence in Education [Ultimate Knowledge Hub]
Artificial intelligence in education
$30 billion of value by 2032 and rising demand - all of this makes the development and deployment of AI in education the priority for enterprises, training companies, EdTech startups, and educational institutions. Check out this ultimate knowledge hub to see real-life examples, types of AI-powered software and top AI tools for education, including custom-developed AI chatbots, as well as the benefits they bring to business and learners, and other insights.
Dmitry Baraishuk• 16 min read
AI in EdTech: Top 15 EdTech AI Startups that Won the Market
AI in EdTech: Top 15 EdTech AI Startups that Won the Market
Discover the top AI EdTech startups that attract millions of users and secure significant funding. You'll understand the key trends of AI in EdTech, the steps required to apply AI in your project, and the innovative ideas that top performers have already employed.
Dmitry Baraishuk• 11 min read
Cloud vs Self-Hosted LMS
Cloud vs Self-Hosted LMS
Choosing the deployment mode (cloud or self-hosted/on-premise) can affect the security of your data, the costs of the implementation, and even the availability of the system. This concerns both new companies that are just starting to build their training program and established enterprises that are moving away from classroom-based learning processes.
Dmitry Baraishuk• 10 min read
Best Learning Experience Platforms (LXPs) in 2023
Best Learning Experience Platforms (LXPs) in 2023
Our elearning software development company has taken top Learning Experience Platforms based on customer reviews, determined and compared their core features, and listed them all, starting from the most expensive one, to make it easier for you to compare. In this overview, you'll also see that in the long term, for companies with a large number of employees, it's more cost-effective to develop a custom LXP, as subscription fees will obviously exceed the cost of development at some point.
Dmitry Baraishuk• 31 min read
AI in Talent Management and in Learning and Development
AI in Talent Management and in Learning and Development
In this post, you will find solutions to the critical business issues that most CEOs and business owners face now: losing key employees, filling skill gaps, finding the right talent, ensuring future-proof skills, upskilling and reskilling. See how Artificial Intelligence resolves it all if implemented timely in your eLearning process.
Dmitry Baraishuk• 3 min read
Learning Experience Platform vs LMS
Learning Experience Platform vs LMS
LXP (Learning Experience Platform) is often AI-driven SaaS-based web or mobile learning management system with a monthly subscription if you purchase a ready-to-use elearning solution. The primary goal of an LXP platform is continuous learning for creating internal mobility, addressing talent gaps, and growing highly performing professionals. If your company uses LMS for corporate education, shall you switch to LXP or just add advanced features to your LMS? Or if it’s your first time to choose an eLearning platform, what to choose to make the best investment decision?
Dmitry Baraishuk• 7 min read
AI Chatbots for Education: Corporate Training, Higher Education and K-12
AI Chatbots for Education: Corporate Training, Higher Education and K-12
According to the research, education is one of the top 5 industries profiting from using chatbots. Using AI chatbots for education will increasingly become a key to enhancing students’ learning experience and educators’ productivity. A good example is the story of Emilien Nizon, a business school professor, who used the bot for 1,200+ students, 91% of which reported on improvements in their educational experience thanks to interacting with the chatbot. Considering such benefits of chatbots in education as low dependencies on infrastructure, time saving, and enhanced productivity, educators are likely to widely apply them in the near future as a part of a broader strategy to use of AI in eLearning. Belitsoft is a chatbot development company with an extensive portfolio in e-learing, including creating сustom training chatboats with coaching/mentoring functionality.
Dmitry Baraishuk• 7 min read
Adaptive Learning AI Technology in Education
AI-Powered Adaptive Learning
It's expected that AI in the educational market will grow at a CAGR of over 40% by 2027. This opens space for worthwhile investments and disruptive business ideas. Keep on reading to learn what challenges businesses solve with AI adaptive learning and how they can apply it to teach better and to earn more.
Dmitry Baraishuk• 10 min read
LMS Tips for Startups
LMS Tips for Startups
The startup culture drives people to release their product ASAP: no matter what you are working on, there’s probably 2-3 other teams doing something similar. Having a well-structured training program and a complementary LMS is an advantage in this regard. This article explains how to gain this advantage and use it best.
Dmitry Baraishuk• 5 min read
Personalized Learning Using AI
Personalized Learning Using AI
An AI-based training platform optimizes knowledge acquisition, cuts training costs (boosts your ROI), and makes it a point of competitive differentiation for your business. Let's see where to start to apply AI personalized learning in your business.
Dmitry Baraishuk• 8 min read
What platform to choose for your eLearning course
What platform to choose for your eLearning course
In this article, we will explain what a learning platform is, which popular options are out there, and which alternatives exist for placing your eLearning course.
Dmitry Baraishuk• 7 min read
Integrate Your CRM with LMS to Increase Sales [Start now!]
Integrate Your CRM with LMS to Increase Sales [Start now!]
In this article, you’ll discover how LMS CRM integration can increase your revenue, minimize customer churn, and lower support ticket load. You’ll understand how to use CRM analytics to enhance your customers’ experience. And how to use LMS content to educate your customers, show them the value of your product, teach them how to use it with maximum efficiency, and make your messages helpful and relevant.
Dmitry Baraishuk• 6 min read
LMS Implementation Services
LMS Implementation Services
An LMS can be an invaluable tool when used effectively. To help you maximize its potential, we've prepared this article outlining how to set clear goals, choose an implementation strategy, assemble a team, plan effectively, migrate data, develop courses, and test the new LMS to ensure everything operates as expected.
Dmitry Baraishuk• 8 min read
Choosing an LMS: How to Make the Right Decision
Choosing an LMS: How to Make the Right Decision
When a company decides to start a learning program or digitize an existing one a question of choosing the right LMS inevitably arises. There are thousands of commercially available systems as well as companies that can make custom ones from scratch. So we will make the selection process a bit easier by giving you some pointers about the evaluation criteria, LMS categories and the most popular options available.
Dmitry Baraishuk• 13 min read
How to Build an Online Learning Platform
How to Build an Online Learning Platform
The step-by-step guide on how to create an elearning platform that favors faster knowledge acquisition, engages learners and boosts their productivity, effectively closes talent gaps, scales in line with your growing business needs, and allows saving on training.
Dmitry Baraishuk• 15 min read
LMS for Healthcare
LMS for Healthcare
As healthcare intricacy increases, the need for robust training and development becomes undeniable. Customized Learning Management Systems (LMSs) have emerged as essential tools for medical professionals to stay abreast of the latest advancements and regulatory nuances. While there are many ready-made options, a tailored LMS often resonates more closely with an organization's unique requirements. At Belitsoft, we craft modern, adaptable LMS frameworks for healthcare organizations focused on enhancing patient care through strategic training. For those in the training industry, our solutions offer an avenue to develop a standout product tailored to the healthcare sector. This article delves into the significance, benefits, challenges, and transformative potential of a custom healthcare LMS.
Dmitry Baraishuk• 8 min read
Custom Enterprise Learning Solutions To Resolve Learning and Competency Challenges
Custom Enterprise Learning Solutions
As a Forbes council member and a CTO with 17+ years of expertise in eLearning, I lay out strategies backed with real-life cases showing how and which custom eLearning solutions help enterprises resolve L&D challenges. Learn 3 core scenarios helping L&D leaders get the most out of investments in training programs and address the most frequent learning and competency challenges.
Dmitry Baraishuk• 5 min read
How to Build your Own LMS from Scratch
How to Build your Own LMS from Scratch
We’ve been creating custom LMSes from scratch for 15+ years. As well as implement and customize ready-to-use eLearning solutions. In this article, we’ll share with you how we build learning management systems.
Dmitry Baraishuk• 22 min read
SharePoint Learning Management System for Business
SharePoint Learning Management System for Business
SharePoint LMS is a perfect eLearning solution for businesses that are already active users of SharePoint for collaboration, document storage, and other workflows. See what a SharePoint LMS may look like, what features it has, and what financial benefits it can bring to your business.
Dmitry Baraishuk• 12 min read
Elearning Trends 2023 To Start Implementing Today in Corporate Training
Elearning Trends 2023 To Start Implementing Today in Corporate Training
Cost-effectiveness, availability, increased flexibility, and better training consistency are a few of the key benefits that eLearning offers L&D through a focus on people, personalization and automation of processes, technology, and big data. Read a complete guide to major eLearning trends 2023 that will define the eLearning industry in the next 5 years.
Dmitry Baraishuk• 15 min read
How to Develop a Learning App?
How to Create an eLearning App?
How to develop a learning app and monetize it? How much does it cost to develop an e-learning app? And what features must your app have to thrive in the market crowded with solutions? In this post, you will find answers to all these questions and see some successful real-life examples, let's start.
Dmitry Baraishuk• 19 min read
AI in Higher Education
AI in Higher Education
The eLearning products driven by AI shift higher education from ineffective “one-size-fits-all” pattern to highly personalized and adaptive learning, improving students' experience and attractiveness of the university or college. This post will give you an insight on how to reduce a summer melt, increase enrollment and graduation rates, and make your campus smart and safe. Keep on reading to find out how AI resolves challenges in higher education.
Dmitry Baraishuk• 8 min read
Artificial intelligence in K-12 education
Artificial intelligence in K-12 education
Implementing AI in K-12 resolves multiple challenges that students, their parents, school leaders, and school districts face. High attrition rates among teachers, low engagement of students, proper learning and knowledge checking during remote classes and, especially, school security. Read the post to discover how all these challenges can be successfully resolved with AI-driven tools.
Dmitry Baraishuk• 7 min read
How to Succeed at eLearning Implementation
How to Succeed at eLearning Implementation
Implementing a new eLearning program is a serious undertaking that can either improve your company’s fortunes or result in wasted money and disappointed people. This article will give you guidelines on successfully planning and implementing eLearning, as well as notify you about some of the possible challenges.
Dmitry Baraishuk• 7 min read
Speech2Face Sees Voices and Hears Faces: Dreams Come True with AI
Speech2Face Sees Voices and Hears Faces: Dreams Come True with AI
Researchers from MIT (The Massachusetts Institute of Technology) created a new artificial intelligence generating people's faces based on their voices. You probably think it’s impossible and straight out of science fiction, don’t you? But the developers have already demonstrated the outcomes of their work – the system draws actual portraits. Let's learn more about the idea.
Dzmitry Garbar• 3 min read

Our Clients' Feedback

zensai
technicolor
crismon
berkeley
hathway
howcast
fraunhofer
apollomatrix
key2know
regenmed
moblers
showcast
ticken
Next slide
Let's Talk Business
Do you have a software development project to implement? We have people to work on it. We will be glad to answer all your questions as well as estimate any project of yours. Use the form below to describe the project and we will get in touch with you within 1 business day.
Contact form
We will process your personal data as described in the privacy notice
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply
Contact us

USA +1 (917) 410-57-57
700 N Fairfax St Ste 614, Alexandria, VA, 22314 - 2040, United States

UK +44 (20) 3318-18-53
26/28 Hammersmith Grove, London W6 7HA

Poland +48 222 922 436
Warsaw, Poland, st. Elektoralna 13/103

Email us

[email protected]

to top