On Thursday, May 7th, 2026, a massive cybersecurity incident disrupted Canvas (Instructure Canvas LMS), a website widely used by schools and universities for assignments, grading, and class materials. The disruption has been caused by a hacking group, going by “ShinyHunters”, who have claimed responsibility for breaching the system and accessing sensitive data. The incident caused widespread outages, sending millions of students, teachers, and other staff into a sweeping panic.
Many schools described the situation as one of the most disruptive technical failures in recent years due to its occurrence during a critical academic period, including finals week for many institutions.
Reports indicate that attackers gained access to parts of Canvas’s systems and then used the disruption to deface login pages and display messages claiming responsibility for the breach. These messages included demands for contact by a set deadline, lest the group release the “275 million individuals’ data from nearly 9,000 schools” (CNN)
In response, Instructure placed parts of Canvas into maintenance mode while software engineers investigated the scope of the attack and worked to restore access.HCPSS has also issued a warning on the hcpss.me site, stating that Canvas will be temporarily removed until the matter is resolved.
The impact on students was immediate and widespread. Many have been locked out of their accounts entirely, while others could log in but found that dashboards, assignments, and grades were missing or failing to load properly.
Because Canvas is deeply integrated into daily academic life, this outage created significant disruption across Centennial classrooms, with many teachers having to change class plans because of it.
“I am concerned for other students that aren’t able to do assignments and finals for this week and upcoming weeks,” said Christina Hagan, a freshman at University of West Florida. Two anonymous Centennial students also confirmed this concern, stating that “it’s been impacting most, if not all of our classes.”
Concerns about data security quickly followed the outage, especially after claims from ShinyHunters that large amounts of student and school data had been stolen. Such data may include names, email addresses, student ID numbers, and billions of internal communications, although the full extent of any breach has not yet been confirmed.
Instructure has stated that there is currently no verified evidence that highly sensitive information such as passwords or financial details has been exposed, but investigations are ongoing and security teams are continuing to analyze affected systems.
Despite widespread rumors on social media describing the event as a “shutdown,” Canvas has not been permanently taken offline. The situation instead reflects a significant service disruption combined with an ongoing cybersecurity investigation.
