Update 6 May | Cyberattack Canvas Provider

Following our initial notice on 4 May, we would like to share the latest information we have regarding the cyberattack on Canvas. The Canvas supplier has since informed UM that the attack also affected UM’s Canvas environment.

Consequently, it cannot be ruled out that UM data has been compromised. Based on the information currently available, it is not yet clear what type of data is involved or which specific individuals’ data has been affected, but the supplier has indicated that there are no indications that passwords have been leaked.

It cannot be ruled out that the attackers obtained a list of email addresses during the Canvas hack. Such data can be used for phishing emails. We therefore ask our students and employees to be extra cautious about suspicious messages, such as emails that arrive unexpectedly or that ask for personal details. 

The Canvas provider has informed us that they are currently investigating which (personal) data has been affected. This will enable the provider to clarify the impact of the cyberattack on UM students and staff.

As also mentioned in the previous message: following a number of security measures a few days ago, Canvas is safe to use.

We will update you as soon as we know more.

Also read