Canvas Incident Status Page

  • On April 25, 2026, Instructure (Canvas) experienced a cybersecurity incident involving a criminal threat actor.
  • On April 29, Instructure detected the attacker and immediately revoked the unauthorized access.
  • On April 30, as the investigation expanded, Instructure revoked additional suspicious access and addressed the underlying vulnerability. At this time, they reported no indicators of an ongoing threat.
  • On May 1, the Instructure community was informed of the incident through a general announcement from Chief Information Security Officer Steve Proud via email.
  • On May 2, Instructure provided a more detailed update, also from the CISO.
  • On May 5, Canvas experienced its first service outage. Instructure CEO Steve Daly provided an additional update with further details in coordination with the CISO.
  • On May 7, Instructure experienced a second cybersecurity incident involving the same criminal threat actor. In response, the California Community Colleges Chancellor’s Office requested that colleges remove the Canvas single sign-on (SSO) link from our portal pages. We are currently awaiting further guidance from the Chancellor’s Office.

Instructure status page: https://status.instructure.com/

UPDATED statement:

“The College continues to monitor the nationwide cybersecurity incident involving Canvas, the learning management system operated by Instructure and used by Shasta College and several other educational institutions.

The college has received notice that Infrastructure has removed the Canvas maintenance page and updated the status to “available” for most users and institutions. However, out of an abundance of caution, the Shasta College IT Department is continuing to restrict access to Canvas and is actively working with systemwide technology and cybersecurity partners to ensure Canvas is safe and secure for use before reactivating it for our end users.

We recognize that the timing of this incident, in close proximity to preparations for the conclusion of the Spring semester, is less than ideal and may cause our students and faculty significant challenges and anxiety. We are working towards a quick resolution so that our IT group has a high degree of confidence that the current situation has been resolved and that the system is secure. We encourage students to reach out to their professors via email to request accommodations to support the successful completion of their studies and the semester.

According to information currently available, there is no indication that Social Security numbers, financial information, or passwords associated with College systems have been compromised as a result of this incident. However, the investigation remains ongoing, and details may continue to evolve.

Students and employees are encouraged to remain alert for phishing emails, suspicious messages, or unexpected requests for personal information.

Because this event involved Canvas’s platform, we do not have any additional details about the incident or the investigation at this time. We continue to monitor Canvas updates and will share them as they become available.”