Canvas Breach Notification
Dear River Bend Staff and Families,
Between May 1 and May 6, River Bend was made aware of a recent cybersecurity incident involving Instructure, the parent company of Canvas. Instructure stated that there was no indication that passwords, dates of birth, government identifiers, or financial information were involved in this incident. It was unclear to what extent River Bend’s data was involved, and Instructure’s investigation was ongoing, with no further information to share at that time.
On May 7, an unauthorized message was posted to Canvas by third party threat actors. Canvas sites at universities and K-12 districts worldwide were unavailable as Instructure pulled Canvas offline while they investigated
Instructure has reported that the information potentially involved in this incident is limited to basic user details, such as names, student ID numbers, and email addresses. Based on a review of the data shared with Canvas through our rostering system, River Bend does not believe any additional information beyond those identified by Instructure were exposed.
River Bend takes the privacy and security of students, staff, and family information very seriously. We will continue to work closely with Instructure and monitor the situation. If any additional information becomes available, we will share updates as appropriate.
For more information on the incident, please visit Instructure’s incident page: https://www.instructure.com/incident_update