Instructure confirms hackers used Canvas flaw to deface portals

bleepingcomputer.com·May 11, 2026

Instructure, an education technology company, has acknowledged a security vulnerability that enabled hackers to alter Canvas login portals and post an extortion message.

For a professional in cybersecurity, the key learning here is the importance of regularly conducting penetration testing and vulnerability assessments, especially on educational platforms like Instructure's Canvas. This incident highlights the need for robust incident response plans and continuous monitoring to quickly detect unauthorized modifications and prevent data breaches or extortion attempts.

Want more content like this?

twixb tracks your favorite blogs and social media, filters by keywords, and delivers personalized key learnings — straight to your inbox.

Create Your Own →Explore Newsfeeds

More from Cybersecurity News

Recent stories curated alongside this one.

thehackernews.com
OpenAI Launches Daybreak for AI-Powered Vulnerability Detection and Patch Validation
OpenAI has introduced Daybreak, a cybersecurity initiative that leverages advanced AI models and Codex Security to help organizations proactively identify and fix vulnerabilities before they can be exploited by attackers.
thehackernews.com
iOS 26.5 Brings Default End-to-End Encrypted RCS Messaging Between iPhone and Android
Apple has launched iOS 26.5, introducing beta support for end-to-end encryption (E2EE) in Rich Communication Services (RCS) as part of an initiative to enhance messaging security and replace traditional SMS. This feature is available to iPhone users with compatible carriers and Android users using the latest Google Messages.
arstechnica.com
Linux bitten by second severe vulnerability in as many weeks
Linux users are facing a serious vulnerability called Dirty Frag, which allows low-privilege users and containers to gain root access to servers, particularly in shared environments. This follows another severe vulnerability disclosed the previous week, and exploit code for Dirty Frag has been leaked online, prompting concerns about active exploitation by hackers.
thehackernews.com
TeamPCP Compromises Checkmarx Jenkins AST Plugin Weeks After KICS Supply Chain Attack
Checkmarx announced that a modified version of the Jenkins AST plugin is available on the Jenkins Marketplace, advising users to ensure they are on version 2.0.13-829.vc72453fa_1c16 or earlier, published on December 17, 2025.
thehackernews.com
cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor
Mr_Rot13 has exploited a critical vulnerability in cPanel (CVE-2026-41940) to deploy a backdoor called Filemanager, enabling remote attackers to gain elevated control through authentication bypass.

Browse all Cybersecurity News →

Instructure confirms hackers used Canvas flaw to deface portals

Want more content like this?

More from Cybersecurity News

OpenAI Launches Daybreak for AI-Powered Vulnerability Detection and Patch Validation

iOS 26.5 Brings Default End-to-End Encrypted RCS Messaging Between iPhone and Android

Linux bitten by second severe vulnerability in as many weeks

TeamPCP Compromises Checkmarx Jenkins AST Plugin Weeks After KICS Supply Chain Attack

cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor