The Canvas learning management system is back online after a cyberattack disrupted operations for thousands of U.S. schools and universities on Friday, May 8, 2026. The incident affected institutions nationwide, including Georgia Tech, which sent warnings to students, professors, and staff about the breach.
Impact and Response
According to Instructure, the company that owns Canvas, the platform experienced a distributed denial-of-service (DDoS) attack that overwhelmed servers with traffic, causing slowdowns and outages. The company worked with cybersecurity experts to restore services and said no data was compromised. Schools using Canvas for assignments, grading, and communication were forced to delay deadlines and use alternative methods.
Georgia Tech Notification
Georgia Tech's information technology department issued a notice urging users to reset passwords and be vigilant for phishing attempts. The university confirmed that no sensitive data was accessed. Other affected institutions included the University of Texas, Arizona State University, and several K-12 districts.
Broader Context
The attack comes amid a rise in cyberattacks targeting educational institutions. Experts warn that schools must invest in robust cybersecurity measures to protect sensitive student and staff data. The Canvas outage underscores the vulnerability of digital learning platforms, which have become essential since the pandemic.
Instructure apologized for the disruption and assured users that additional security protocols are being implemented to prevent future incidents.
