Edtech Firm Instructure Discloses Data Breach

The edtech firm also revoked privileged credentials and access tokens, deployed fixes to improve security, and implemented additional monitoring.Instructure also revealed that the attackers gained access to personal information such as names, email addresses, and student ID numbers. User messages were also compromised.“At this time, we have found no evidence that passwords, dates of birth, government identifiers, or financial information were involved,” the company said.Instructure has not shared details on how many institutions and users were affected, nor on the threat actor behind the incident.Instructure hacked by ShinyHuntersOn May 3, the infamousShinyHuntersextortion group added Instructure to its Tor-based leak site, claiming the theft of 3.65 terabytes of data.The threat actor claims the stolen information belongs to 275 million students, teachers, and other individuals at close to 9,000 education institutions worldwide, and that Instructure’s Salesforce instance was also compromised.SecurityWeekhas emailed Instructure for additional information on the attack and will update this article if the company responds.Related:Sandhills Medical Says Ransomware Breach Affects 170,000Related:Checkmarx Confirms Data Stolen in Supply Chain AttackRelated:Vimeo Confirms User and Customer Data BreachRelated:Luxury Cosmetics Giant Rituals Discloses Data Breach

Instructure also revealed that the attackers gained access to personal information such as names, email addresses, and student ID numbers. User messages were also compromised.“At this time, we have found no evidence that passwords, dates of birth, government identifiers, or financial information were involved,” the company said.Instructure has not shared details on how many institutions and users were affected, nor on the threat actor behind the incident.Instructure hacked by ShinyHuntersOn May 3, the infamousShinyHuntersextortion group added Instructure to its Tor-based leak site, claiming the theft of 3.65 terabytes of data.The threat actor claims the stolen information belongs to 275 million students, teachers, and other individuals at close to 9,000 education institutions worldwide, and that Instructure’s Salesforce instance was also compromised.SecurityWeekhas emailed Instructure for additional information on the attack and will update this article if the company responds.Related:Sandhills Medical Says Ransomware Breach Affects 170,000Related:Checkmarx Confirms Data Stolen in Supply Chain AttackRelated:Vimeo Confirms User and Customer Data BreachRelated:Luxury Cosmetics Giant Rituals Discloses Data Breach

“At this time, we have found no evidence that passwords, dates of birth, government identifiers, or financial information were involved,” the company said.Instructure has not shared details on how many institutions and users were affected, nor on the threat actor behind the incident.Instructure hacked by ShinyHuntersOn May 3, the infamousShinyHuntersextortion group added Instructure to its Tor-based leak site, claiming the theft of 3.65 terabytes of data.The threat actor claims the stolen information belongs to 275 million students, teachers, and other individuals at close to 9,000 education institutions worldwide, and that Instructure’s Salesforce instance was also compromised.SecurityWeekhas emailed Instructure for additional information on the attack and will update this article if the company responds.Related:Sandhills Medical Says Ransomware Breach Affects 170,000Related:Checkmarx Confirms Data Stolen in Supply Chain AttackRelated:Vimeo Confirms User and Customer Data BreachRelated:Luxury Cosmetics Giant Rituals Discloses Data Breach

Instructure has not shared details on how many institutions and users were affected, nor on the threat actor behind the incident.Instructure hacked by ShinyHuntersOn May 3, the infamousShinyHuntersextortion group added Instructure to its Tor-based leak site, claiming the theft of 3.65 terabytes of data.The threat actor claims the stolen information belongs to 275 million students, teachers, and other individuals at close to 9,000 education institutions worldwide, and that Instructure’s Salesforce instance was also compromised.SecurityWeekhas emailed Instructure for additional information on the attack and will update this article if the company responds.Related:Sandhills Medical Says Ransomware Breach Affects 170,000Related:Checkmarx Confirms Data Stolen in Supply Chain AttackRelated:Vimeo Confirms User and Customer Data BreachRelated:Luxury Cosmetics Giant Rituals Discloses Data Breach

On May 3, the infamousShinyHuntersextortion group added Instructure to its Tor-based leak site, claiming the theft of 3.65 terabytes of data.The threat actor claims the stolen information belongs to 275 million students, teachers, and other individuals at close to 9,000 education institutions worldwide, and that Instructure’s Salesforce instance was also compromised.SecurityWeekhas emailed Instructure for additional information on the attack and will update this article if the company responds.Related:Sandhills Medical Says Ransomware Breach Affects 170,000Related:Checkmarx Confirms Data Stolen in Supply Chain AttackRelated:Vimeo Confirms User and Customer Data BreachRelated:Luxury Cosmetics Giant Rituals Discloses Data Breach

The threat actor claims the stolen information belongs to 275 million students, teachers, and other individuals at close to 9,000 education institutions worldwide, and that Instructure’s Salesforce instance was also compromised.SecurityWeekhas emailed Instructure for additional information on the attack and will update this article if the company responds.Related:Sandhills Medical Says Ransomware Breach Affects 170,000Related:Checkmarx Confirms Data Stolen in Supply Chain AttackRelated:Vimeo Confirms User and Customer Data BreachRelated:Luxury Cosmetics Giant Rituals Discloses Data Breach

SecurityWeekhas emailed Instructure for additional information on the attack and will update this article if the company responds.Related:Sandhills Medical Says Ransomware Breach Affects 170,000Related:Checkmarx Confirms Data Stolen in Supply Chain AttackRelated:Vimeo Confirms User and Customer Data BreachRelated:Luxury Cosmetics Giant Rituals Discloses Data Breach

Related:Sandhills Medical Says Ransomware Breach Affects 170,000Related:Checkmarx Confirms Data Stolen in Supply Chain AttackRelated:Vimeo Confirms User and Customer Data BreachRelated:Luxury Cosmetics Giant Rituals Discloses Data Breach

Related:Checkmarx Confirms Data Stolen in Supply Chain AttackRelated:Vimeo Confirms User and Customer Data BreachRelated:Luxury Cosmetics Giant Rituals Discloses Data Breach

Related:Vimeo Confirms User and Customer Data BreachRelated:Luxury Cosmetics Giant Rituals Discloses Data Breach

Source: SecurityWeek