Canvas system used by multiple Arizona colleges is back online after cyberattack

The Canvas online learning system, used by Arizona State University, Northern Arizona University, and multiple Maricopa Community Colleges, was restored Friday after a cyberattack knocked it offline, disrupting final exams and assignments for tens of thousands of students globally. The hacking group ShinyHunters claimed responsibility for the breach, targeting Instructure, the company behind Canvas. According to threat analyst Luke Connolly from Emsisoft, the attack exposed data from nearly 9,000 schools worldwide, including billions of private messages and records. Screenshots shared by Connolly showed the group had threatened to leak the stolen data, though the dedicated dark web leak site was later removed. Canvas went down Thursday during final exam season, exacerbating chaos as students and professors struggled to access course materials. Schools like the University of Texas at San Antonio postponed exams, while others, including Princeton University, monitored the situation through social media updates. Professors, such as Rhongho Jang from Wayne State University, faced challenges recovering online assignments critical to final grading. Instructure confirmed partial system restoration but did not respond to questions about whether a ransom was paid or how the compromised data was secured. Cybersecurity experts like Allan Liska from Recorded Future noted no indication of a ransom payment, though Instructure was assessing the attack’s scope and ensuring hackers were removed from its systems. The disruption highlighted vulnerabilities in education institutions, which are frequent targets for cybercriminals seeking sensitive data. Past attacks on school districts, including Minneapolis and Los Angeles, underscore the growing risk as digitized records replace physical storage. With Canvas back online, institutions are now focused on data recovery and minimizing academic disruptions for affected students.