https://phasewalk.xyz/tags/foss/ Recent content in Foss on phasewalk Hugo en-us Thu, 07 May 2026 00:00:00 +0000 https://phasewalk.xyz/posts/canvas-hack/ Thu, 07 May 2026 00:00:00 +0000 https://phasewalk.xyz/posts/canvas-hack/ <p>Roughly 9,000 educational institutions across the world have been affected by a large cyberattack mounted against Instructure, the parent company of <strong>Canvas LMS</strong>. Anyone who tried to login to their student portal this morning was greeted with the following message<sup id="fnref:1"><a href="#fn:1" class="footnote-ref" role="doc-noteref">1</a></sup>:</p> <pre><code class="language-plaintext">SHINYHUNTERS rooting your systems since '19 ;) ShinyHunters has breached Instructure (again). Instead of contacting us to resolve it they ignored us and did some &quot;security patches&quot;. ⚠ WARNING If any of the schools in the affected list(*) are interested in preventing the release of their data, please consult with a cyber advisory firm and contact us privately at TOX to negotiate a settlement. You have till the end of the day by 12 May 2026 before everything is leaked. Instructure still has until EOD 12 May 2026 to contact us. ▼ DOWNLOAD AFFECTED_SCHOOLS.TXT ▼ 91.215.85.103/pay_or_leak/ instructure_affected_schools_list.txt visit us: shnyhntww34phqoa6dcgnvps2yu7dlwzmy5 Ikvejwjdo6z7bmgshzayd.onion </code></pre> <blockquote class="post-callout callout-tip"> <span class="callout-label">Note</span> <p>The full list of affected institutions (reportedly 8,809) includes major institutions like UC Berkeley, Penn, and Duke. You can find the claimed list here: <a href="https://databreaches.net/wp-content/uploads/Claimed-Victims-of-Canvas-Cyber-Incident.txt">https://databreaches.net/wp-content/uploads/Claimed-Victims-of-Canvas-Cyber-Incident.txt</a></p>