Overview
- ShinyHunters has posted a list of 8,809 institutions it says were affected and claims 280 million records, while also alleging a breach of Instructure’s Salesforce system.
- Instructure says the breach exposed names, email addresses, student ID numbers, and private messages, with no evidence of passwords, dates of birth, government IDs, or financial data.
- The company reports it contained the attack, revoked credentials and access tokens, rotated application keys, deployed patches, and increased monitoring.
- TechCrunch reviewed a sample that included data from two U.S. schools but could not verify the full list or the hackers’ scale claims.
- Instructure says services are back and the probe with outside experts and law enforcement continues, which may lead to notices to schools and users.