Home / Technology / Edtech Firm Strikes Deal with Hackers Over Stolen Student Data
Edtech Firm Strikes Deal with Hackers Over Stolen Student Data
5 Jun
Summary
- Edtech company reached an agreement with hackers who stole student data.
- Hackers confirmed student data deletion and promised no future extortion.
- Congress requested a briefing on multiple intrusions by the hacking group.
An educational technology company announced a resolution with the hacking group ShinyHunters, which had previously claimed to steal data from its Canvas platform. The company stated an agreement was reached, ensuring all stolen student and school data was returned and confirmed as destroyed.
ShinyHunters also confirmed the data deletion, promising no further targeting or payment demands toward the company or its nearly 9,000 affected school customers. This resolution follows a period of concern after students reported seeing notes from the hackers, and the Canvas platform was temporarily taken offline.
Amidst these security incidents, the House Homeland Security Committee has formally requested a briefing from Instructure's CEO. The committee seeks details on the intrusions, the nature of the data compromised, and the company's coordination with federal law enforcement agencies.
Ransomware negotiators suggest that a payment was likely made, highlighting the complex decision-making process companies face when confronted with such demands.
