Southeast Texas universities affected by data breach involving Canvas software

A cyberattack on Canvas, a widely used learning management system, caused widespread disruptions on May 7, 2026, as students and educators struggled to access critical academic tools. The hacking group ShinyHunters claimed responsibility, stating they accessed data from nearly 9,000 schools worldwide, including billions of private messages and records. The group posted threats to leak the data, with deadlines set for May 7 and May 12, suggesting ongoing negotiations over potential extortion payments. Southeast Texas universities, including Texas A&M University, the University of Houston, Texas Southern University, University of Houston-Downtown, Houston City College, and Prairie View A&M, confirmed their systems were affected. The University of Houston issued a statement noting its IT team was investigating the incident involving Instructure, Canvas’s parent company. Schools across the U.S., from Virginia Tech to Harvard University, also reported disruptions. The attack mirrors a previous breach on PowerSchool, another learning management system, where a Massachusetts college student was later charged. ShinyHunters, described as a loosely organized group of teenagers and young adults based in the U.S. and U.K., has targeted other high-profile systems, including Live Nation’s Ticketmaster subsidiary. Instructure has not publicly addressed the attack on its social media platforms. The breach highlights the vulnerability of educational institutions, which store vast amounts of sensitive data digitally. Past incidents, such as attacks on Minneapolis Public Schools and the Los Angeles Unified School District, demonstrate the growing threat of cybercriminals exploiting school systems. Affected universities and school districts have begun notifying students and parents about the ongoing situation.