[Ucrfacultyandstaff] Canvas Incident: Update on Core Learning Data
UCR Information Technology Solutions
its at ucr.edu
Wed May 13 16:50:33 PDT 2026
[image: image]
Canvas Incident: Update on Core Learning Data
Dear Highlander Community,
We are writing to provide you with the latest information regarding the
Canvas (eLearn) cybersecurity incident that occurred earlier this month.
First, we would like to reassure you that UCR’s instance of Canvas is fully
operational and secure to use. Students and faculty resumed instructional
activities in Canvas on May 9, 2026.
Second, Instructure, the maker of Canvas, has informed UCR that user
credentials, grades, developer keys, and other core learning data were not
compromised. Instructure is finalizing a full audit of the attack and will
share a UCR-specific data impact report, including exact data fields,
resource types, and user-level rows. This process will take several weeks.
According to the status update <https://www.instructure.com/incident_update>
provided by Instructure, they have reached an agreement with the
unauthorized actor involved in this incident. As part of that agreement:
-
The data was returned to Instructure.
-
Instructure received digital confirmation of data destruction (shred
logs).
-
This agreement covers all impacted Instructure customers, including UCR.
UCR Information Technology Solutions is committed to actively monitoring
the situation and continuing our holistic security assessment of the
incident. Most importantly, we are diligently working to ensure that the
Highlander community maintains secure access to Canvas.
Stay Up-To-Date
For the most recent updates on this incident, please refer to the ITS Blog
<https://its.ucr.edu/blog/2026/05/07/monitoring-nationwide-security-breach-involving-canvas>
and Instructure’s Security Incident Update & FAQs
<https://www.instructure.com/incident_update>. The UC Office of the
President will also continue to provide any relevant updates to the UC
community
<https://ucnet.universityofcalifornia.edu/employee-news/nationwide-security-breach-involving-canvas/>
.
Please contact ITS if you need technical assistance, encounter login
issues, system issues, or need to report information security concerns
related to Canvas. To request IT support, please submit a ticket
<https://ucrsupport.service-now.com/ucr_portal?id=sc_cat_item&sys_id=c7ed7b211b2c9510609f86e9cd4bcbba&group=df62cbd137d58b00bb5427d2b3990e44&selection=Which%20category%20application%20or%20system%20are%20you%20having%20issues%20with%20-%20Teaching%20and%20Learning>
or call BearHelp at (951) 827-4848 Monday through Friday, 8:00 am to 5:00
pm.
Sincerely,
Matthew Gunkel
Chief Information Officer and Associate Vice Chancellor
Dewight Kramer
Chief Information Security Officer
Need IT help? Submit a support ticket at its.ucr.edu/help
Information Technology Solutions
Computing & Communications Building
900 University Ave.
Riverside, CA 92521
951-827-4848 | its.ucr.edu
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://scotmail.ucr.edu/pipermail/ucrfacultyandstaff/attachments/20260513/9d1964ea/attachment-0001.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image
Type: image/png
Size: 40409 bytes
Desc: not available
URL: <https://scotmail.ucr.edu/pipermail/ucrfacultyandstaff/attachments/20260513/9d1964ea/attachment-0001.png>
More information about the Ucrfacultyandstaff
mailing list