// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-newsDTG 0600Z
ColdRecon / Breach Radar / Canvas (Instructure)
Breach Record

Canvas (Instructure)

DISCLOSED 2026-05-09 · UNKNOWN

A cyberattack targeted the Canvas learning management system by Instructure, impacting universities globally, including several top Canadian institutions. The nature and scope of the breach remain unclear, with no details on data exposure or attack method provided. Investigations are ongoing.

The record

What we know

Disclosed
2026-05-09
Sector
Education Technology
Country
US
Domain
instructure.com
Sources

Cited reporting

This page is the permanent ColdRecon entry for the Canvas (Instructure) disclosure. It updates if new public reporting emerges. All tracked breaches →

Canvas (Instructure) just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →