Instructure Discloses Second Data Breach in Less Than a Year Involving Subcontractor

Instructure, a U.S.-based edtech company known for platforms like Canvas, Mastery, and Parchment, disclosed its second data breach in less than a year, affecting the education sector. The breach involved a subcontractor, though no specific technical details, compromised data types, or exact dates were provided. The incident follows a prior breach reported within the same 12-month period, indicating recurring security challenges. No CVE IDs or numerical impact metrics were mentioned in the disclosure. The breach highlights vulnerabilities in third-party dependencies within Instructure's operational ecosystem.