Instructure’s Canvas platform faced another disruption after a new ShinyHunters extortion message to schools and users. The criminal group claimed it accessed data affecting more than 275 million people across about 9,000 schools, sending instructions to negotiate for non-disclosure. Users reported messages demanding action by May 12, while Instructure said earlier that Canvas was fully operational and reported security measures including revoking privileged credentials and rotating keys. Hours later, Instructure acknowledged Canvas, Canvas Beta, and Canvas Test were unavailable while it investigated. The incident highlights mounting pressure on learning-management providers: repeated breach claims, short communication windows, and real-time outages that directly affect instruction and academic operations.