9:36 a.m. May 13, 2026 - Update on Instructure/Canvas Cybersecurity Incident
Lethbridge Polytechnic continues to monitor the cybersecurity incident involving Instructure, the vendor that provides Canvas.
Instructure has provided an additional update on the incident and advised that it has reached an agreement with the unauthorized actor involved. According to Instructure, the data involved in the incident has been returned, they received confirmation that the data was destroyed, and they have been informed that affected institutions and users will not be subject to extortion or public release of the data related to this incident.
Instructure has also advised that no action is required from individual institutions or users regarding this matter.
You can read updates from Instructure directly at: https://www.instructure.com/incident_update.
While this update is reassuring, we encourage all students and employees to remain vigilant and cautious about suspicious emails, phone calls, or messages claiming to be from Lethbridge Polytechnic, Canvas, or other trusted organizations. Lethbridge Polytechnic will never ask you to provide your password or sensitive personal information through email or unsolicited communications.
To help protect yourself online, we encourage you to review the cybersecurity tips and resources available on the Lethbridge Polytechnic Cyber Security webpage.
12:08 p.m. May 11, 2026 - Update on Instructure/Canvas Cybersecurity Incident
Lethbridge Polytechnic continues to work closely with Instructure regarding the recently reported cybersecurity incident involving Canvas.Instructure has advised that Canvas remains fully operational and safe to use. They have also confirmed that core learning data — including course content, assignment submissions, and credentials/passwords — was not compromised.
At this time, no action is required by Lethbridge Polytechnic Canvas users. Lethbridge Polytechnic continues to work with Instructure and is awaiting additional details regarding the incident. If any action becomes necessary, Lethbridge Polytechnic will provide clear guidance and instructions.
While the investigation continues, students and employees are encouraged to remain vigilant and cautious of suspicious emails, phone calls or messages claiming to be from Lethbridge Polytechnic, Canvas or other trusted organizations. Lethbridge Polytechnic will never ask you to provide your password or other sensitive personal information through email or unsolicited communications. To help protect yourself online, we encourage you to review the cybersecurity tips and resources available on the Lethbridge Polytechnic Cyber Security webpage. Updates from Instructure are available at: https://www.instructure.com/incident_update
11:03 a.m. May 8, 2026 - Update on Instructure/Canvas Cybersecurity Incident
Earlier this week, Lethbridge Polytechnic shared information regarding a cybersecurity incident involving Instructure, the vendor that provides Canvas. The initial incident happened on April 27, 2026. On May 7, 2026, Instructure identified additional unauthorized activity tied to the same incident that caused Canvas to be temporarily unavailable.
Instructure confirmed that the unauthorized actor carried out this activity by exploiting an issue related to their Free-For-Teacher feature. Instructure has shut down all Free-For-Teacher accounts.
Following additional discussions and investigation with Instructure, on May 6, we were informed that Lethbridge Polytechnic is among the institutions affected by this incident.
Based on the investigation so far, the data taken includes certain personal information of users, including names, email addresses, student ID numbers, and messages among Canvas users. They have found no evidence that passwords, dates of birth, government identifiers or financial information were involved.
At this time, we do not yet have complete information regarding how many users may have been impacted or the specific information involved. Instructure’s investigation remains ongoing, and we are continuing to work closely with them to better understand the scope and impact on our institution. We will provide additional updates as more information becomes available.
Canvas is fully back online and available for use. Instructure has reviewed the known indicators and found no evidence that the threat actor currently has access to the platform. As a precaution, we encourage all students and employees to remain vigilant and cautious of suspicious emails, phone calls, or messages claiming to be from Lethbridge Polytechnic, Canvas, or other trusted organizations. Lethbridge Polytechnic will never ask you to provide your password or other sensitive personal information through email or unsolicited communications.
10:23 a.m. May 4, 2026 - Cybersecurity Incident Involving Instructure
Lethbridge Polytechnic has been notified of a cybersecurity incident involving Instructure, the vendor that provides Canvas.
Instructure is investigating the incident with outside forensic experts and has indicated that the incident has been contained. As part of its response, Instructure has revoked affected credentials and access tokens, applied security patches, rotated certain keys as a precaution, and increased monitoring.
At this time, there is no confirmation that Lethbridge Polytechnic data is affected. Current information suggests the incident may involve limited user-identifying information, such as names, email addresses, student ID numbers and messages among users. There is currently no indication that passwords, dates of birth, government identifiers or financial information were involved.
This is a vendor-driven incident affecting Instructure/Canvas customers beyond Lethbridge Polytechnic. Canvas remains available, and Lethbridge Polytechnic will continue to monitor the situation and provide updates as they are available.