The cyber extortion group ShinyHunters has claimed responsibility for a significant cyberattack on Instructure, the company behind the Canvas learning management platform. This breach affects nearly 275 million users, including students and teachers from almost 9,000 educational institutions globally. The stolen data encompasses personal details such as names, email addresses, student ID numbers, and billions of private messages exchanged on the platform. ShinyHunters is known for targeting large organizations and demanding ransom to prevent the leaking of stolen information. Instructure's chief information security officer, Steve Proud, confirmed the breach and stated that the investigation is ongoing. Experts express concern over this trend of targeting third-party education vendors, which can compromise multiple institutions simultaneously. While the immediate risk of identity fraud appears low, the leaked information could be exploited for phishing scams or social engineering attacks.