Education technology company Instructure is facing renewed cybersecurity concerns after hackers reportedly compromised several school login pages linked to its Canvas learning platform.

The latest incident emerged only days after the company disclosed a data breach involving the theft of students’ private information, including names, email addresses, and messages exchanged between teachers and students.

Cybercrime group Shiny Hunters has claimed responsibility for the attacks. Reports indicated that the hackers altered login pages for multiple schools using Canvas by injecting malicious HTML files that displayed threatening messages.

The group warned that it would release allegedly stolen data publicly on May 12 unless a settlement was reached with the company. At the time of the incident, Instructure’s website reportedly experienced intermittent outages and displayed “too many requests” errors, while parts of the Canvas platform showed maintenance notifications.

The company had not immediately responded to requests for comment regarding the latest breach. The hackers previously claimed they obtained data connected to nearly 9,000 schools worldwide, allegedly affecting more than 231 million individuals.

Security experts believe the latest defacement campaign is intended to increase pressure on the company and its customers into paying a ransom to prevent public release of the information.

Although the exact method used to compromise the login pages remains unclear, members of ShinyHunters reportedly described the latest attack as separate from the earlier breach.

The group has become known in recent years for targeting organizations, publicizing stolen data, and demanding payments in exchange for withholding the information from public exposure.

Source: TechCrunch