Source: Krebsonsecurity
Instructure took Canvas offline—affecting thousands of schools and universities—rather than negotiate with ShinyHunters or manage the breach quietly. The decision signals either confidence in incident response or concern about the scope of exposed data. The attack exposes asymmetric leverage: extortion gangs can credibly threaten education institutions where downtime costs (cancelled classes, inaccessible assignments) may exceed ransom for schools with limited cybersecurity teams. The move will likely accelerate migration to competing LMS providers and test whether these platforms can credibly promise the business continuity schools expect.