Globalt dataintrång mot Canvas: Uppsala universitet övertaget av ShinyHunters – miljontals användare drabbade
Where things stand
Updated May 7, 08:58 PMUmeå University confirms that data was stolen from it after a hacker attack on the Canvas learning platform. Personal data and private messages may have been leaked. The American company Instructure, which provides Canvas, was the target of the security incident. The hacker group Shiny Hunters has claimed responsibility for the attack, though this remains unconfirmed. Umeå University continues to use Canvas as usual.
Open questions
- What is the full extent of the breach across other universities globally?
- Have other Swedish universities, such as Uppsala or Karlstad, been affected?
- What specific personal data and private messages have been compromised?
- Are there any ransom demands from Shiny Hunters, and have they been met?
- What steps is Instructure taking to secure the platform and notify affected users?
Key actors
What's corroborated
Umeå University confirms that data was stolen from them after the hacker attack on the Canvas learning platform.
3 sourcesacross 1 articleThe hacker group ShinyHunters has claimed responsibility for the attack, but this is unconfirmed.
2 sourcesacross 1 articleUmeå University continues to use Canvas as usual.
2 sourcesacross 1 articleThe American company Instructure, which provides the Canvas platform, was the target of a security incident.
2 sourcesacross 1 articlePersonal data and private messages may have been leaked.
2 sources
Timeline5
2026-05-07: Daily Mail reports Queensland school data (names, emails) stolen in Canvas breach; global estimates of 200M people, 9000+ institutions affected.
Göteborgs-Posten names Chalmers and University of Gothenburg as affected by the Canvas data breach.
Karlstads universitet confirms over 10,000 affected; Umeå and Försvarshögskolan also named.