EdTech Firm Instructure Experiences Major Data Breach Following Ransom Demand

Post Views: 8

Data Breach at Instructure Exposes Personal Information

Instructure, a leading provider of education technology, has suffered a significant data breach due to a cyberattack that compromised various tools relying on API keys.

According to Instructure’s official statement, the breach occurred on April 30 and involved hackers accessing personal information, including names, addresses, and student ID numbers, without compromising sensitive data like passwords or financial information.

The attack also resulted in the theft of user messages, leaving behind a trail of uncertainty regarding the extent of the breach. Instructure revealed that its Salesforce instance was compromised, potentially affecting nearly 9,000 education institutions worldwide, alongside approximately 275 million students and teachers.

The company has since taken measures to contain the situation, including revoking privileged credentials and implementing additional monitoring, although the exact number of institutions and users impacted remains unclear.

On May 3, the infamous ShinyHunters extortion group published a statement on their Tor-based leak site, asserting that they had acquired 3.65 terabytes of data from Instructure. This stolen data reportedly pertains to millions of individuals associated with thousands of educational institutions, but Instructure has yet to provide further details about the nature of the stolen data or the identities of the attackers.

The incident underscores the susceptibility of educational institutions to cyberattacks and the critical need for robust cybersecurity measures as reliance on digital platforms continues to grow.