Podcasts about Instructure

American technology company

  • 173PODCASTS
  • 268EPISODES
  • 36mAVG DURATION
  • 5WEEKLY NEW EPISODES
  • Jun 16, 2026LATEST
Instructure

POPULARITY

20192020202120222023202420252026


Best podcasts about Instructure

Latest podcast episodes about Instructure

Changing Higher Ed
When AI Finds the Administrative Friction Higher Ed Leaders Miss

Changing Higher Ed

Play Episode Listen Later Jun 16, 2026 36:46


Most AI conversations in higher education focus on the academic side. The administrative side gets less attention and is producing the bigger near-term financial wins for institutions willing to govern the rollout. In this episode of the Changing Higher Ed® podcast, Dr. Drumm McNaughton speaks with Justin Beck, CEO of Gravyty, about how AI is being applied across enrollment and advancement at institutions including Empire State University, Florida Southwestern State College, and Boise State University. Drawing on his career across Blackboard, Instructure, Kaltura, and now Gravyty, Beck walks through the specific case studies behind administrative AI adoption: a reported 4% year-over-year retention gain at Empire State, 90% first-contact resolution of admissions inquiries at Florida Southwestern, and an 87% increase in donor volume at Boise State. He also explains where institutions go wrong, including bots that loop the way call-center bots loop and set-it-and-forget-it deployments that drift out of alignment within weeks. This conversation is especially relevant for presidents, boards, and enrollment and advancement leaders building the business case for administrative AI and the governance to back it. Topics Covered Why administrative AI is producing measurable financial gains while most institutions still treat AI as an academic policy question The retention math: how a 4% lift can translate into multi-million-dollar revenue protection at a mid-size institution How AI sorts and triages carries admissions volume that hiring cannot keep up with Why a poorly designed enrollment chatbot is worse than no chatbot at all How AI surfaces structural fragmentation across student-facing offices Advancement AI's real value: donor prioritization, not email generation What good governance and human-review cadence actually look like in practice Real-World Examples Discussed Empire State University: a 25% engagement lift and a 4% year-over-year retention gain after deploying AI virtual assistants across roughly eight departments Florida SouthWestern State College: 90% first-contact resolution of admissions inquiries and time to class registration cut in half Boise State University: an 87% increase in donor volume, a 50% increase in donor interaction and response, and $635,679 raised through an AI-assisted advancement channel A Missouri institution where an AI web crawler surfaced three different admissions deposit dates published on three active web pages A New York institution where more than 40% of questions coming into the financial aid office had nothing to do with financial aid Three Key Takeaways for Higher Education Leadership Move quickly, with an acceptable use policy on the books and defined institutional outcomes the AI work is supposed to drive Control what you can control while pulling stakeholders in, including the faculty committee model Iterate often on a recurring governance cadence, because the technology is changing month by month Institutions that do not use AI to improve administrative efficiency are incurring opportunity costs in every cycle. Read the transcript: https://changinghighered.com/administrative-ai-in-higher-ed-finding-revenue-friction/ #AdministrativeAI #HigherEducation #HigherEducationPodcast

Those Who Can't Do
Classroom Management Hacks That Backfire

Those Who Can't Do

Play Episode Listen Later Jun 8, 2026 44:56


ORDER MY NEW BOOK (AVAILABLE NOW)!!! — https://bit.ly/49CZ5A0⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ I bombed a comedy show in New Orleans this weekend, and Gerry and I are unpacking every chaotic detail on this week's How to Survive the Classroom, from the venue surprise-merging me with another show, to the broken mic, to me literally apologizing to Kevin Hart in my anxiety dream that night. Then we finally dive into the Canvas hack and how Gerry's school was down for FIVE days. We dig into how the breach actually happened, why district-issued phishing tests are honestly the pettiest thing in education, and the unhinged disgruntled-employee email saga I once lived through that the district quietly scrubbed from every inbox overnight. Takeaways: Comedians are often nicer to you after a bad set than a good one, which honestly says everything you need to know about the industry (and frankly, teaching, too). The Canvas hack was resolved because Instructure paid up. The breach started with a free for-teacher account, so treat suspicious emails like the threat they are. "I'll wait" classroom management only works if you're ready for it NOT to work. Always have a real Plan B for the class that calls your bluff. Telling students you'll be absent is a gamble. Some classes will plan accordingly, others will use it as permission to check out before you even leave. We may need to rethink the kindergarten / fifth grade / preschool graduation industrial complex. Save the bedazzled cap energy for moments that actually mark a meaningful transition. -- Teachers' night out? Yes, please! Come see comedian Educator Andrea…Get your tickets at ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠teachersloungelive.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ and ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Educatorandrea.com/tickets⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ for laugh out loud Education! — Don't Be Shy Come Say Hi: www.podcasterandrea.com Watch on YouTube: @educatorandrea A Human Content Production Learn more about your ad choices. Visit megaphone.fm/adchoices

EChannelNews Podcast
Cybersecurity Defense Ecosystem Episode 11: Weaponized AI and the Collapse of Legacy Incident Response

EChannelNews Podcast

Play Episode Listen Later Jun 3, 2026 52:41


Send us Fan MailPresenters: Julian Lee, Publisher, Community Builder, Speaker, Channel Ecosystem Developer with a focus on cybersecurity, AI and Digital TransformationPaolo Del Nibletto, Editor, eChannelNewsNim Nadarajah, C.CISO, Cyber Security, Compliance & Transformation Expert | Executive Board Member | Keynote Speaker Adam Bennett, Co-Founder & CEO at SureStack CEO at Crosshair CyberRandal Wark, Owner, MTech Cyber (MSP & Cybersecurity) ★ Conference Host ★ Mastermind Facilitator ★ Podcast Host ★ JournalistThe Cybersecurity Defense Ecosystem aims to assist Managed Service Providers (MSPs) in becoming more cybersecurity-oriented amidst industry disruptions caused by AI and regulatory changes.The meeting examined how advanced AI models and automated offensive tooling are radically accelerating zero-day vulnerability discovery, forcing a massive paradigm shift in corporate incident response. The panel highlighted Anthropic's Project Glasswing and its core security-focused model, Claude Mythos, as clear signals of this new reality. Able to autonomously uncover and chain complex, decades-old vulnerabilities in minutes, these tools are rendering traditional point-in-time scanning and monthly “Patch Tuesday” cycles obsolete. To adapt, the panel emphasized moving toward agent-based, continuous risk prioritization based on exploitability and CVE severity, while utilizing automated testing and seamless rollback capabilities to mitigate the operational threat of system breakage from rapid patching.The urgency of this shift was framed by alarming defensive metrics, with CrowdStrike's recent threat data citing a record-setting e-crime breakout time of just 27 seconds and an average corporate compromise under six minutes. The discussion referenced the high-profile ShinyHunters breach of Instructure's Canvas platform between April 30 and May 7, which disrupted final examinations across thousands of educational institutions. Despite the platform going offline and a ransom reportedly being paid in exchange for decryption keys and certificates of destruction, the panel warned that such outcomes heavily expose organizations to double extortion and severe legal liabilities.Transitioning to defensive economics, the panel analyzed the broader workforce and infrastructure impact of the AI arms race. The consensus was clear: AI will not replace security practitioners, but practitioners who adopt AI will replace those who do not. Organizations are urged to retool internal roles and consider variable, token-based pricing models for AI compute to shift operational budgets away from legacy per-user SaaS structures. They should also secure baseline infrastructure by enforcing core email security protocols like DMARC, SPF, and DKIM to prevent supply-chain vendor spoofing.Click here to watch previous episodes on Cybersecurity Defense EcosystemTo learn more on Cybersecurity Defense Ecosystem, visit: https://cybersecuritydefenseecosystem.com/

K-12 Greatest Hits:The Best Ideas in Education
Can AI Innovators Solve the Trust Problem AI Is Creating?

K-12 Greatest Hits:The Best Ideas in Education

Play Episode Listen Later Jun 1, 2026 23:10


The conversation around AI in education is changing fast, and the latest GSV Learning and Earning Forecast now identifies trust as the factor that will determine the near-term future of AI in the classroom. In this episode, we explore the “AI trust gap” forming between the people racing to expand AI in schools and the educators, parents, and students who are starting to push back. Through discussions with educators, school leaders, learning science researchers, analysts, ed tech developers, AI vendors, and non-profits across the community, we zoom in on the hard questions surrounding AI's future in education. What happens when innovation starts moving faster than trust? What is required to bridge the gap? Who is working on solutions? What's working? Sources: Forecast for Learning & Earning in 2025-2026 | Digital Promise | Learning Commons | Surgeon General's Office Advises Schools to Limit Screen Time | Teachers and parents weigh benefits and risks of artificial intelligence in schools | Do AI's risks outweigh the benefits for students and schools? | Fostering Trust in the Age of AI | GSVtv | The Next AI Maturity Curve – Orchestration, Trust, and Scale | AI is Air: Ambient AI in Every Breath, Step, and Swipe | GSVtv | Lincoln High students swap screen time for study time after phone ban | How to Choose Safe and Effective Classroom Technology | More Students Boo AI at Commencement Nick Melvoin, a Los Angeles Unified School District (LAUSD) board member who recently drafted a resolution to restrict student screen time in classrooms. Sandra Liu Huang, Head of Education & Product at CZI and president of Learning Commons. Jean Claude Brizard– President and CEO of Digital Promise. Jeremy Roschelle– Executive Director of Digital Promise's Learning Sciences Research team. Melissa Loble, Chief Academic Officer, Instructure. Patrick Gittisriboongul, Ed.D., Superintendent of Lynwood Unified School District. Justin Reich, Director of Teaching Systems Lab at MIT. Jennifer Lee Partner GSV Ventures. Muktha Ananda– Google's Director of Engineering. Robert Wong, Google's Director of Product Management. Brian Carslon, CEO, Storytime AI.Tim Sanders, Chief Innovation Officer at G2 and Executive Fellow at Harvard. Chris Hamatake, parent. Rebecca Winthrop, Senior Fellow and Director of the Center for Universal Education at Brookings. Dr. Eugene Kim, Professor of Education at Concordia University.

The technology blog and podcast
Sans episode talking about Canvas and other things for the newsletter of May 8, 2026

The technology blog and podcast

Play Episode Listen Later Jun 1, 2026 123:50 Transcription Available


Tech problems made this episode difficult, but its finally out.Hello folks, welcome to podcast 41 of the Sans series. While I've been tied up, I know that one of the biggest issues right now being talked about is the Canvas breach and its related problems.It is also covered in the May 8, 2026 newsletter of Sans, and that's what this issue of Sans will cover. Would you like to read the newsletter instead? Here is the link to read the May 8, 2026 newsletter so go check this out. Here is what is covered in the newsletter.Top of the News Critical PAN-OS RCE Flaw Exploited, Awaiting Patch Ivanti Releases Updates to Address Actively exploited Vulnerability in Endpoint Manager Mobile DAEMON Tools Lite Supply Chain Compromised Here is What is covered in the section called The Rest of the Week's News. Cisco Publishes Nine Security Advisories CISA Urges Proactive Resilience for Critical Infrastructure Australian Government Establishes Cyber Review Board FTC Settles Lawsuit with Kochava and Collective Data Solutions Over Sale of Precise Location Data No Comment from Instructure, but Schools Communicate Following Data Breach Laptop Farm Hosts Sentenced to 18 Months in Prison Latvian National Sentenced in Connection with Providing Advice to Multiple Ransomware Groups Some of these items may be covered on the blog, feel free to go and check it out if you wish. TSB program 272A will cover the Canvas Breach from Instructure, we'll also see what Sans has to say and comment on this through here too.Thanks for listening, make it a great day!

Marketplace Tech
What we learned from the Canvas hack

Marketplace Tech

Play Episode Listen Later May 20, 2026 6:29


Earlier this month, a group called ShinyHunters took responsibility for a hack on the education platform Canvas, which is used for coursework at colleges. In a letter posted online, the group threatened to leak data it took from the platform, including billions of private messages between students and teachers. Canvas was also temporarily unavailable, disrupting students' ability to do their work.Then, last week, Instructure, which makes Canvas, said it had reached a deal with the hackers, that the data had been returned and all copies destroyed. Marketplace's Stephanie Hughes asked Rachel Tobac, CEO at Social Proof Security, what we know about the deal.

Marketplace All-in-One
What we learned from the Canvas hack

Marketplace All-in-One

Play Episode Listen Later May 20, 2026 6:29


Earlier this month, a group called ShinyHunters took responsibility for a hack on the education platform Canvas, which is used for coursework at colleges. In a letter posted online, the group threatened to leak data it took from the platform, including billions of private messages between students and teachers. Canvas was also temporarily unavailable, disrupting students' ability to do their work.Then, last week, Instructure, which makes Canvas, said it had reached a deal with the hackers, that the data had been returned and all copies destroyed. Marketplace's Stephanie Hughes asked Rachel Tobac, CEO at Social Proof Security, what we know about the deal.

SECURE AF
ShinyHunters Breach of Instructure Canvas LMS

SECURE AF

Play Episode Listen Later May 20, 2026 5:21 Transcription Available


Got a question or comment? Message us here!In this episode of the #SOCBrief, we break down the ShinyHunters breach of Instructure's Canvas LMS and what it means for security teams everywhere. From exploiting a lesser-monitored service to exfiltrating millions of records, this attack highlights the growing risk of third-party vendors and supply chain exposure. We walk through how the breach unfolded, key indicators of compromise, and the practical steps SOC teams can take to detect, monitor, and reduce vendor-related risk before it becomes a crisis.Support the showWatch full episodes at youtube.com/@aliascybersecurity.Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.

The Cybersecurity Defenders Podcast
"Dirty Frag", Canvas ransomware attack, “Mini Shai-Hulud” malware campaign & AI-developed zero-day exploit / Intel Chat [#324]

The Cybersecurity Defenders Podcast

Play Episode Listen Later May 18, 2026 28:49


In this episode of The Cybersecurity Defenders Podcast, we discuss some intel being shared in the LimaCharlie community.Researchers have disclosed a new Linux local privilege escalation technique called “Dirty Frag,” which chains together two kernel vulnerabilities: CVE-2026-43284 in xfrm-ESP handling and CVE-2026-43500 in RxRPC.The breach affecting educational technology provider Instructure has raised broader concerns about the security dependencies schools have on third-party cloud platforms.Security researchers at Aikido are tracking a major expansion of the “Mini Shai-Hulud” malware campaign targeting the npm ecosystem.Google Threat Intelligence Group says threat actors are moving from experimental AI usage toward large-scale operational integration of generative models across the cyberattack lifecycle.Support our show by sharing your favorite episodes with a friend, subscribe, give us a rating or leave a comment on your podcast platform.This podcast is brought to you by LimaCharlie, maker of the SecOps Cloud Platform, infrastructure for SecOps where everything is built API first. Scale with confidence as your business grows. Start today for free at limacharlie.io.

PEBCAK Podcast: Information Security News by Some All Around Good People
Episode 255 - No Keys Required: BitLocker Busted, Canvas Crushed, Forza Fumbles, World Cup 2026

PEBCAK Podcast: Information Security News by Some All Around Good People

Play Episode Listen Later May 18, 2026 47:25


Welcome to this week's episode of the PEBCAK Podcast!  We've got four amazing stories this week so sit back, relax, and keep being awesome!  Be sure to stick around for our Dad Joke of the Week. (DJOW) Follow us on Instagram @pebcakpodcast   Please share this podcast with someone you know!  It helps us grow the podcast and we really appreciate it!   Cyb3r Operations https://www.cyb3roperations.com/   https://www.bleepingcomputer.com/news/security/windows-bitlocker-zero-day-gives-access-to-protected-drives-poc-released/ https://www.tomshardware.com/tech-industry/cyber-security/microsoft-bitlocker-protected-drives-can-now-be-opened-with-just-some-files-on-a-usb-stick-yellowkey-zero-day-exploit-demonstrates-an-apparent-backdoor YellowKey Zero-Day: An unpatched BitLocker bypass dubbed "YellowKey" allows physical attackers to unlock encrypted Windows 11 and Server 2022/2025 drives using just a USB stick — no password or recovery key needed — and the frustrated researcher behind it is threatening more disclosures after Microsoft allegedly ignored previous reports. https://calmatters.org/economy/technology/2026/05/california-went-big-on-canvas-the-worst-happened/ https://databreaches.net/2026/05/08/one-size-does-not-fit-all-sometimes-victims-probably-should-pay-ransom/ https://www.bleepingcomputer.com/news/security/us-govt-seeks-instructure-testimony-on-massive-canvas-cyberattack/ Canvas Ransomware Attack: ShinyHunters breached education platform Canvas twice within a week, stealing data from an estimated 275 million users across nearly 9,000 institutions globally, disrupting final exams across California and beyond — and now the U.S. House Committee on Homeland Security is demanding Instructure executives testify, while analysts debate whether refusing to pay the initial ransom made the fallout far worse.    https://insider-gaming.com/forza-horizon-6-leak-drops-155-gb-content/ Forza Horizon 6 Leak: Playground Games accidentally uploaded the complete, unencrypted 155GB build of Forza Horizon 6 to Steam ten days before its May 19 release, making the full game available to pirates — and Playground has since issued lifetime bans to players who streamed the leaked footage.   https://www.rotowire.com/soccer/article/2026-world-cup-groups-full-group-by-group-preview-analysis-projections-and-dark-horses-100836 https://au.news.yahoo.com/head-knocks-ultra-violence-viral-231852371.html 2026 World Cup Preview: With the expanded 48-team tournament kicking off June 11 across the U.S., Canada, and Mexico, Spain, France, and England headline the favorites — but the new format means more upsets, more dark horses, and storylines ranging from Messi's likely final campaign to Iraq's return to the World Cup stage for the first time since 1986.   Dad Joke of the Week (DJOW)   Find the hosts on LinkedIn: Chris - https://www.linkedin.com/in/chlouie/ Brian - https://www.linkedin.com/in/briandeitch-sase/ Buck - https://www.linkedin.com/in/buck-rogers-9952446a/

The Shared Security Show
Cybersecurity Lessons from the Canvas Data Breach

The Shared Security Show

Play Episode Listen Later May 18, 2026 16:30


In this episode we discuss the recent cyber attack targeting Instructure's widely used learning platform, Canvas, and the major late-breaking development that Instructure reached an “agreement” with the ShinyHunters cybercriminal group after threats to leak large amounts of stolen student and faculty data. Instructure says the stolen data was returned and that attackers provided digital confirmation that the information was destroyed, but the company did not deny making a payment—language that many in cybersecurity interpret as a ransom settlement. Special thanks to Guardsquare for sponsoring this episode! Guardsquare is the leader in mobile application security, with multi-layered protection for your Android and iOS apps. Learn more at Guardsquare.com. ** Links mentioned on the show ** Cyberattack on Canvas system causes chaos for students at thousands of schools https://apnews.com/article/cyberattack-schools-canvas-instructure-shinyhunters-a0d7719689263e6b5f90d0e633391b5b Instructure strikes agreement with hackers after Canvas breach hits Duke, thousands of other schools https://www.dukechronicle.com/article/duke-university-instructure-reaches-agreement-with-canvas-hackers-shinyhunters-cyberattack-leak-down-stolen-data-ransom-20260512 ** Watch this episode on YouTube ** ** Become a Shared Security Supporter ** Get exclusive access to bonus episodes, listen to new episodes before they are released, receive a monthly shout-out on the show, and get a discount code for 15% off merch at the Shared Security store. Become a supporter today by going to our YouTube channel's membership section: https://www.youtube.com/channel/UCg9CCDIYkDDqwEZ3UYaxjnA/join ** Thank you to our sponsors! ** SLNT Visit slnt.com to check out SLNT's amazing line of Faraday bags and other products built to protect your privacy. As a listener of this podcast you receive 10% off your order at checkout using discount code “sharedsecurity”. ** Subscribe and follow the podcast ** Subscribe on YouTube: https://www.youtube.com/c/SharedSecurityPodcast Follow us on Bluesky: https://bsky.app/profile/sharedsecurity.bsky.social Follow us on Mastodon: https://infosec.exchange/@sharedsecurity Join us on Reddit: https://www.reddit.com/r/SharedSecurityShow/ Visit our website: https://sharedsecurity.net Subscribe on your favorite podcast app: https://sharedsecurity.net/subscribe Sign-up for our email newsletter to receive updates about the podcast, contest announcements, and special offers from our sponsors: https://shared-security.beehiiv.com/subscribe Leave us a rating and review: https://ratethispodcast.com/sharedsecurity Contact us: https://sharedsecurity.net/contact The post Cybersecurity Lessons from the Canvas Data Breach appeared first on Shared Security Podcast.

Defence Connect Podcast
CYBER UNCUT: Budget priorities, paying ransoms, and Cyber Daily chats with Frank Briguglio, FCTO at SailPoint

Defence Connect Podcast

Play Episode Listen Later May 18, 2026 38:13


Daniel Croft and David Hollingworth analyse the Albanese government's budget, the Instructure breach and ransom payments, and Dan Marks from Austrade chats with SailPoint's federal chief technology officer. Jim Chalmers has handed down another Labor budget, and while it seems like not a lot for cyber security, Hollingworth thinks the heavy lifting has already been done – do you agree? Then it's on to a massive issue – do you pay a ransom to cyber criminals? That is possibly what learning platform provider Instructure may have done. The pair break that down, from the morality to the fact that sometimes, that may be the best choice. But can you trust a criminal? The jury, as they say, is out. And once again, we are joined by Dan Marks, investment director and cyber security lead for Austrade, who sat down with Frank Briguglio, federal chief technology officer at SailPoint, at the recent RSA Conference. Just another week in cyber security. Enjoy, The Cyber Uncut team

ALEF SecurityCast
Ep#330 - Hackeři přitvrzují. Firmy řeší fyzické výhrůžky, policie i únosy

ALEF SecurityCast

Play Episode Listen Later May 18, 2026 10:04


V nové epizodě CCTV NEWS se podíváme na znepokojivý trend fyzických výhrůžek při ransomware útocích, případy únosů spojených s kryptoměnami i rostoucí tlak kyberzločinců mimo digitální prostor. Rozebereme také masivní útok na vzdělávací platformu Canvas, po kterém firma Instructure uzavřela dohodu s útočníky ze skupiny ShinyHunters, únik zákaznických dat z německého e-shopu automobilky Škoda Auto nebo výsledky soutěže Pwn2Own Berlin 2026, kde bezpečnostní výzkumníci objevili 47 nových zero-day zranitelností. Na závěr se podíváme i na další kritickou privilege escalation chybu v Linux kernelu s názvem Fragnesia, která umožňuje získání root oprávnění na řadě populárních distribucí.

K12 Tech Talk
Episode 264 - Googlebook Announcement & Canvas Breach Debrief

K12 Tech Talk

Play Episode Listen Later May 15, 2026 49:04 Transcription Available


On this episode, the guys discuss Google's announcement of the new "Googlebook" (a reported merge of Android and Chrome OS), growing controversy and litigation around iReady and screen time in schools, and a debrief of the recent Canvas/Instructure security incident with guest Michael Klein from the Institute for Security and Technology. Unofficial demo of AluminumOS: https://youtu.be/dXmFIfv_tIA?si=Baw0OInBqJf-IkDD The largest segment is a deep dive into the Canvas/Instructure incident with cybersecurity expert Michael Klein. He walks through the timeline (initial unauthorized activity detected April 29; exfiltration via cross‑site scripting of a free‑for‑teachers account; a later attack that posted extortion notes to some users), the involvement of CrowdStrike, the public claims by the ShinyHunters group, and Instructure's statement about an agreement with the actor. The conversation covers the technical nature of the attack, impacts on confidentiality, integrity and availability (including disruptions to finals/registrar functions), the downstream consequences for integrations with SIS and other edtech systems, and why many institutions remain cautious to reconnect APIs. Michael and the hosts discuss practical guidance and explore policy implications. Join us July 6th-10th, 2026 – GAMEIS Conference in Savannah, GA ———— Sponsored by: SysCloud Meter Fortinet Incident IQ ClassLink NTP ———— Join the K12TechPro Community (exclusively for K12 Tech professionals) Buy some swag (tech dept gift boxes, shirts, hoodies...)!!! Email us at k12techtalk@gmail.com OR our "professional" email addy is info@k12techtalkpodcast.com X @k12techtalkpod Facebook Visit our LinkedIn Music by Colt Ball Disclaimer: The views and work done by Josh, Chris, and Mark are solely their own and do not reflect the opinions or positions of sponsors or any respective employers or organizations associated with the guys. K12 Tech Talk itself does not endorse or validate the ideas, views, or statements expressed by Josh, Chris, and Mark's individual views and opinions are not representative of K12 Tech Talk. Furthermore, any references or mention of products, services, organizations, or individuals on K12 Tech Talk should not be considered as endorsements related to any employer or organization associated with the guys.

Cyber Security Uncut
Budget priorities, paying ransoms, and Cyber Daily chats with Frank Briguglio, FCTO at SailPoint

Cyber Security Uncut

Play Episode Listen Later May 15, 2026 38:13


Daniel Croft and David Hollingworth analyse the Albanese government's budget, the Instructure breach and ransom payments, and Dan Marks from Austrade chats with SailPoint's federal chief technology officer. Jim Chalmers has handed down another Labor budget, and while it seems like not a lot for cyber security, Hollingworth thinks the heavy lifting has already been done – do you agree? Then it's on to a massive issue – do you pay a ransom to cyber criminals? That is possibly what learning platform provider Instructure may have done. The pair break that down, from the morality to the fact that sometimes, that may be the best choice. But can you trust a criminal? The jury, as they say, is out. And once again, we are joined by Dan Marks, investment director and cyber security lead for Austrade, who sat down with Frank Briguglio, federal chief technology officer at SailPoint, at the recent RSA Conference. Just another week in cyber security. Enjoy, The Cyber Uncut team

Bli säker-podden
#351 Utpressarnas löfte till Canvas-studenterna

Bli säker-podden

Play Episode Listen Later May 15, 2026 36:37


I slutet av april drabbades lärplattformen Canvas av ett intrång. Den ökända utpressargruppen Shinyhunters stal studenternas kontaktuppgifter och direktmeddelanden. I Sverige används Canvas vid drygt 30 högskolor och universitet. Inledningsvis försökte Shinyhunters få Instructure, företaget bakom Canvas, att betala en lösensumma för att slippa få den stulna datan publicerad på darknet. Den sjunde maj bytte Shinyhunters taktik och erbjöd i stället de berörda lärosätena att köpa sig fria. Cybersäkerhetsföretag brukar råda offren att inte betala lösensummorna. Så länge några offer betalar lösensummorna kommer problemet med utpressningsattacker att kvarstå. Instructure valde ändå att göra en överenskommelse med utpressarna. Som en del av överenskommelsen lovade Shinyhunters att radera den stulna datan. Shinyhunters visade till och med loggar som styrkte att datan hade raderats, något Instructure poängterade i sin incidentnotis. I veckans poddavsnitt pratar Peter och Nikka om Instructures naiva inställning till Shinyhunters ”trust me bro-garantier”. Garantin om att datan har raderats är bara värd något om garantin kommer från en pålitlig källa. I det här fallet kommer garantin från samma aktör som stal datan från första början. Peter och Nikka fortsätter också att diskutera den senaste utvecklingen kring åldersverifieringshysterin. De pratar också om en sårbarhet (eller möjligtvis bakdörr) som har upptäckts i Windows Bitlocker och om en uppdatering som gör det möjligt att skicka totalsträckskrypterade RCS-meddelanden mellan Iphone- och Android-mobiler. Tyvärr har de svenska operatörerna låtit bli att aktivera stödet. Se fullständiga shownotes på https://go.nikkasystems.com/podd351.

ChannelBuzz.ca
The Buzz: Acronis launches IaaS for MSPs, Citrix rethinks secure access, and Upwind brings agents to cloud security

ChannelBuzz.ca

Play Episode Listen Later May 14, 2026 4:52


Today’s headline news for Canadian IT solution providers: Acronis has launched Cyber Frame, a new hyperconverged infrastructure (HCI) and infrastructure-as-a-service (IaaS) platform built specifically for managed service providers. The platform allows MSPs to build and deliver infrastructure services with native integration into Acronis’ cyber protection and remote monitoring and management (RMM) tools. Acronis says it is designed to give service providers an alternative to legacy virtualization and hyperscaler cost pressures, offering better margin control and options for both fully hosted and partner-hosted deployments. Citrix has introduced Citrix Platform Flex, a new persona-based secure access model intended to help organizations move away from static, one-size-fits-all IT delivery. The new platform is built to align IT resources more closely with evolving business needs, delivering secure access, managed services, and observability with more flexible and predictable pricing. It acknowledges that different worker profiles require vastly different access parameters in a modern hybrid environment. Upwind has launched its new AI Agentic Pack, adding agent-driven capabilities to its cloud security platform. The tools are designed to help security teams investigate threats, validate active exposures, and prioritize remediation, leaning into the growing industry trend of using autonomous agents to compress the window between threat discovery and response. Nerdio vice president of MSP sales Will Ominsky warned in a Redmond Channel Partner interview today that MSPs who figure out how to monetize AI by the end of 2026 will grab massive market share. He noted that partners who only experiment with AI internally—without building client-facing, revenue-generating AI practices—will be left behind in the coming wave of SMB adoption. Boomi and Red Hat have announced a strategic collaboration to deliver an integrated stack for deploying agentic AI at scale. The partnership combines Boomi’s Agentstudio with Red Hat AI, providing organizations with a framework to orchestrate AI workflows securely without losing control of their data governance or allowing cloud consumption costs to spiral. The U.S. Department of Homeland Security is reportedly scrutinizing Instructure after a massive ransomware attack disrupted its Canvas online learning platform. The breach highlights the growing vulnerability of critical SaaS infrastructure and the widespread supply chain impact when platforms are targeted during peak usage periods, such as university finals week. Canadian cybersecurity provider Plurilock has announced CAD $1.13 million in new critical services contracts. The wins reflect continued momentum for the AI-native security firm as it expands its footprint across both public and private sector environments, capitalizing on the growing need for identity-centric security. [powerpresss] Read Full Transcript Welcome to The Buzz from ChannelBuzz.ca, I’m Robert Dutt, today is Thursday, May 14, 2026, and here’s what’s happening in the channel today. Acronis has launched Cyber Frame, a new hyperconverged infrastructure and infrastructure-as-a-service platform built specifically for managed service providers. The launch comes at a critical time for the channel, as many service providers are actively seeking alternatives to legacy virtualization platforms following recent industry shakeups and pricing model changes. Cyber Frame allows MSPs to build and deliver infrastructure services with native, seamless integration into Acronis’ existing cyber protection and remote monitoring and management tools. Rather than dealing with the unpredictable costs of hyperscale public clouds or the complexity of managing disparate vendor stacks, MSPs can use Cyber Frame to consolidate their service delivery. Acronis says the platform is designed to give service providers significantly better margin control and simplified management. It offers flexible deployment options, allowing partners to choose between a fully hosted model managed by Acronis, or a partner-hosted deployment running on the MSP’s own hardware in their local data center. By combining compute, storage, networking, and security into a single unified platform, Acronis is positioning Cyber Frame as a way for MSPs to scale their infrastructure offerings profitably while maintaining the tight security posture that modern SMB clients demand. Citrix has introduced Citrix Platform Flex, a new persona-based secure access model intended to help organizations move away from static, one-size-fits-all IT delivery. In today’s hybrid work environment, the access requirements for a call center employee, a traveling executive, and a remote software engineer are vastly different. Citrix built Platform Flex to recognize these distinctions, allowing IT teams to align resources, security controls, and application delivery specifically to the varying needs of different worker profiles. The new platform delivers secure application access, managed services, and comprehensive observability under a model designed for more flexible and predictable pricing. By shifting away from rigid licensing structures that often force companies to over-provision resources for basic users, Citrix aims to help enterprises optimize their cloud and infrastructure spending. Platform Flex also incorporates advanced analytics and security policies that adapt in real-time based on user behavior and location. For channel partners, this persona-driven approach provides a clear framework to help enterprise customers rationalize their IT investments, simplify the management of distributed workforces, and ensure that security protocols do not impede productivity for end users who require high-performance access to specialized applications. Upwind has launched its new AI Agentic Pack, adding autonomous, agent-driven capabilities to its cloud security platform. As cloud environments grow increasingly complex and security operations centers face unprecedented alert fatigue, the cybersecurity industry is rapidly shifting toward agentic AI to help manage the load. Upwind’s new tools are specifically designed to help security teams autonomously investigate threats, validate whether theoretical vulnerabilities are actually exposed to active exploitation, and prioritize remediation efforts based on real-world risk. Instead of simply generating more alerts for human analysts to sift through, the Agentic Pack leverages artificial intelligence to actively investigate the root cause of an incident, map the attack path across cloud infrastructure, and propose actionable fixes. This launch leans heavily into the growing necessity of using autonomous agents to drastically compress the window between threat discovery and response. With malicious actors utilizing AI to accelerate their attacks, defenders require matching speed to counter them. For managed security service providers, Upwind’s agentic capabilities offer a pathway to scale their operations, handle a higher volume of telemetry without adding headcount, and provide faster threat containment for their clients. In brief: Nerdio vice president of MSP sales Will Ominsky warned in a Redmond Channel Partner interview today that MSPs who figure out how to monetize AI by the end of 2026 will grab massive market share.  Boomi and Red Hat have announced a strategic collaboration to deliver an integrated stack for deploying agentic AI at scale.  The U.S. Department of Homeland Security is reportedly scrutinizing Instructure after a massive ransomware attack disrupted its Canvas online learning platform.  And Canadian cybersecurity provider Plurilock has announced 1.13 million dollars in new critical services contracts.  Later today on in the channel, we’re talking eCrime Reports and Threat Intelligence with Camerous Tousley and Pedro Kertzman of ESET. And if you missed it yesterday, check out my conversation with Auvik’s Steve Petryschuk on the gap between MSPs’ expectation around AI, and the reality they have realized to date. That’s how we’re seeing the headlines today. I’m Robert Dutt for ChannelBuzz.ca, thanks for listening. Have a great day.

The technology blog and podcast
TSB 272A: The Canvas Breach ... Is this now going in to the healthcare sector

The technology blog and podcast

Play Episode Listen Later May 14, 2026 189:35 Transcription Available


Hello folks, welcome to a special TSB program covering the Canvas hack. How bad is it? What is known? How does it compare to other breaches like PowerSchool and others? We'll discuss it from within this podcast. Here are articles that we've read that have covered the saga from when we've laid eyes on it. This is not everything, and some of this may be blogged on our blog. Instructure hacker claims data theft from 8,800 schools, universities What we know about the Canvas hack that has impacted thousands of schools Instructure confirms hackers used Canvas flaw to deface portals Instructure reaches 'agreement' with ShinyHunters to stop data leak US govt seeks Instructure testimony on massive Canvas cyberattack There are other outlets also covering this, including the BBC, PC Magazine, The Cyberwire Podcast, and more. We are not reading and discussing any particular article, we're painting a picture of what seems to be the overall problem and how Canvas is now joining the party of very large breaches. Their PR was great, telling users what was going on, but yet, when you hear how the actors got in, you'll start wondering. Contact information is going to be given throughout the program, and thanks so much for listening to this special program. See you next time!

Cyber Security Today
Canvas Breach 'Deal' With ShinyHunters, AI Zero-Day Warning, Checkmarx Hit Again

Cyber Security Today

Play Episode Listen Later May 13, 2026 16:09


Cybersecurity Today examines a troubling set of new security developments affecting schools, software supply chains, and account security. Instructure says it reached an "agreement" with the ShinyHunters threat group after the massive Canvas breach that may have affected up to 275 million users across 9,000 educational institutions. Reports indicate attackers exploited multiple cross-site scripting (XSS) vulnerabilities to hijack administrator sessions and post extortion demands. Checkmarx has been breached again. This time, attackers reportedly inserted a malicious Jenkins Application Security Testing (AST) plugin designed to steal credentials. The same threat actor, believed to be Team46/TeamTNT-linked infrastructure or Team PCP depending on reporting attribution, appears to have reused secrets allegedly stolen in the earlier Trivy supply-chain compromise. Microsoft and Google are warning organizations not to treat passkeys as a complete security solution. If weaker recovery methods or legacy credentials remain active, attackers can still bypass them. Google's Threat Intelligence Group also reports what it describes as the first observed evidence of hostile actors using AI to assist in zero-day vulnerability research and exploit development, signalling a new phase in attacker industrialization. Also in today's show: Santa Clara County sues Meta over alleged scam-ad profits. Chapters 00:00 Headlines Overview 00:28 Canvas Breach Deal Fallout 01:59 How the XSS Attack Worked 03:15 Checkmarx Supply Chain Attack 05:01 Credential Rotation Lessons 05:37 Why Passkeys Aren't Enough 07:19 Layered Defence Takeaways 08:35 AI-Assisted Zero-Day Development 10:10 Industrialized AI Threats 13:08 Meta Scam Ads Lawsuit 15:19 Wrap Up

Cyber Security Headlines
Instructure's agreement, Shai Hulud campaign, OpenAI's Daybreak

Cyber Security Headlines

Play Episode Listen Later May 13, 2026 7:52


Instructure reaches an "agreement" with ShinyHunters Shai Hulud campaign is back OpenAI launches Daybreak Get the show notes here: https://cisoseries.com/cybersecurity-news-instructures-agreement-shai-hulud-campaign-openais-daybreak/ Huge thanks to our episode sponsor, Doppel Social engineering attacks look trustworthy — a routine request, an internal email, a familiar face on a call.   But Doppel sees through the disguise. Our AI-native platform detects and disrupts attacks across every channel, while training employees to recognize deepfakes and deception.   We fight relentlessly to protect your business, brand, and people.   Doppel. Outpacing what's next in social engineering.   Learn more at doppel.com.  

Risky Business News
Risky Bulletin: Damaging worm rips through npm ecosystem

Risky Business News

Play Episode Listen Later May 13, 2026 7:49


RubyGems disables sign-ups after an attack on staff, Instructure paid the ransom, the Gentlemen ransomware operation gets hacked, and another major supply chain attack on npm (yawn). Show notes Risky Bulletin: RubyGems disables sign-ups after attack on staff

Breach FM - der Infosec Podcast
Flurfunk - Canvas/Instructure-Breach, Linux CopyFail, MiniShai-Hulud & DENIC-Ausfall

Breach FM - der Infosec Podcast

Play Episode Listen Later May 13, 2026 60:09


Erstes Thema ist der Canvas-Breach von Instructure. ShinyHunters behauptet 3,65 Terabyte aus über 8.800 Institutionen gestohlen zu haben – Namen, E-Mail-Adressen, private Nachrichten. Einfallstor: Free-for-Teacher-Accounts. Passwörter und Finanzdaten sollen nicht betroffen sein. Was mich beschäftigt: Eine Einrichtung, die selbst nichts falsch gemacht hat, sitzt ohne eigene Handlungsmöglichkeit da und wartet auf Informationsbrösel vom Hersteller. Wir diskutieren, wie man trotzdem strukturiert kommuniziert – und warum Team-Vertrauen wichtiger ist als ein 90-Punkte-Notfallplan.Dann bringt Max zwei Linux-Kernel-Schwachstellen in schneller Folge: CopyFail (CVE-2026-31431), entdeckt von Theori mit ihrem KI-Tool XINT – eine Privilege-Escalation-Lücke im Krypto-Subsystem, neun Jahre unentdeckt. Tückisch: nur die In-Memory-Version wird manipuliert, Integritätstools wie Tripwire merken nichts. Kurz danach folgte DirtyFrag, ein verwandter Bug derselben Klasse mit öffentlichem PoC, bevor Patches für alle Distributionen fertig waren.Während der Aufnahme kuratiere ich noch eine heiße Supply-Chain-News: MiniShai-Hulud – mutmaßlich wieder TeamPCP – hat über 170 NPM-Pakete kompromittiert, darunter TanStack, Mistral AI, Guardrails AI und OpenSearch. Bei TanStack hatten die manipulierten Pakete trotzdem gültige Build-Provenance-Attestation. Und die Malware enthält einen Deadman-Switch: wird der Token widerrufen, kann eine destruktive Löschroutine ausgelöst werden.Als Leseempfehlung bringe ich einen Report meines Arbeitgebers Trend Micro über Earth Shadow 53, eine vorläufig China-attribuierte Kampagne gegen Regierungs- und Verteidigungsziele in Südostasien und Polen. Initial Access: ungepatchte Exchange- und IIS-Server via ProxyLogon-Kette von 2021. Persistenz via ShadowPad, wenig Lärm, klassisches Prepositioning.Zum Abschluss Max über den DENIC-DNSSEC-Ausfall vom 5. Mai: Ein einzelner fehlerhafter Config-Change ließ alle DE-Domains kurzzeitig unerreichbar werden – in unter einer halben Stunde zurückgerollt. Aber ein guter Anlass, mal zu prüfen, ob im eigenen BCM auch steht, was passiert, wenn der DNS-Provider ausfällt.Canvas/Instructure-Breachhttps://thehackernews.com/2026/05/instructure-reaches-ransom-agreement.htmlLinux CopyFail (CVE-2026-31431)https://xint.io/blog/copy-fail-linux-distributionsMiniShai-Hulud / TanStack Supply-Chainhttps://www.stepsecurity.io/blog/mini-shai-hulud-is-back-a-self-spreading-supply-chain-attack-hits-the-npm-ecosystemSHADOW-EARTH-053 (Trend Micro Report)https://www.trendmicro.com/en_us/research/26/d/inside-shadow-earth-053.htmlDENIC DNSSEC-Ausfallhttps://blog.denic.de/analyse-des-dns-ausfalls-vom-5-mai-2026/

Daily Tech News Show
Android Intelligence Comes to the Googlebook - DTNS 5267

Daily Tech News Show

Play Episode Listen Later May 12, 2026 34:00


Instructure reached an agreement to pay attackers of its Canvas portal so students can get back to work, and Thinking Machines announced a research preview of a more natural conversation flow called Interaction Models.Starring Jason Howell and Tom Merritt.Links to stories discussed in this episode can be found here. Hosted on Acast. See acast.com/privacy for more information.

Techmeme Ride Home
Hackers Get Paid

Techmeme Ride Home

Play Episode Listen Later May 12, 2026 20:09


Instructure cut a deal with ShinyHunters to return stolen Canvas data, without disclosing the terms. eBay rejected GameStop's $56B bid as "neither credible nor attractive." OpenAI launches Daybreak for cybersecurity, Amazon employees game AI usage targets, and Mira Murati's first model drops. Instructure reaches a deal with hackers who breached its Canvas edtech platform to return stolen data and destroy copies, without saying what it gave in return (NYT) eBay rejects GameStop's $56B takeover offer, saying the unsolicited bid is "neither credible nor attractive", in a letter from eBay Chairman Paul Pressler (Bloomberg) OpenAI launches Daybreak, a cybersecurity initiative integrating AI models and Codex Security to help organizations patch vulnerabilities (TestingCatalog) Sources: some Amazon employees are using in-house OpenClaw-like tool MeshClaw for unnecessary tasks to inflate AI token use after Amazon set weekly AI targets (FT) AppMagic: Grok downloads fell to ~8.3M in April, from a high of 20M+ in January; Recon Analytics: Grok's paid adoption in the US remains nearly flat YoY in Q2 (WSJ) Thinking Machines Lab details interaction models, which can think and respond in real time, letting users and AI interact continuously for better collaboration (Thinking Machines Lab) Learn more about your ad choices. Visit megaphone.fm/adchoices

Black Hills Information Security
The Canvas / Instructure Breach – 2026-05-11

Black Hills Information Security

Play Episode Listen Later May 12, 2026 63:18 Transcription Available


Join us LIVE on Mondays, 4:30pm EST.A weekly Podcast with BHIS and Friends. We discuss notable Infosec, and infosec-adjacent news stories gathered by our community news team.https://www.youtube.com/@BlackHillsInformationSecurityChat with us on Discord! - https://discord.gg/bhis

Security Squawk
AI Built Its First Zero-Day | 275M Student Records Stolen | 90% Hidden Ransomware

Security Squawk

Play Episode Listen Later May 12, 2026 58:53


A cybersecurity line just got crossed. Google has now confirmed the first known case of hackers using artificial intelligence to build a working zero-day exploit that bypasses two-factor authentication. At the same time, Instructure the company behind Canvas, used by over 9,000 schools worldwide appears to have quietly paid a ransom after ShinyHunters stole 275 million student and teacher records and defaced hundreds of school login pages. And if you think these attacks are rare, new data from BlackFog says otherwise: 90% of ransomware attacks this quarter were never publicly disclosed. Most breaches never make headlines. On this episode of Security Squawk, Bryan Hornung, Randy Bryan, and Reginald Andre break down three stories that reveal where cybercrime is heading next and why most organizations are less prepared than they think. This Week's Cybersecurity Breakdown 1. Canvas / Instructure Data Breach & Apparent Ransom Payment One of the largest education-sector breaches in recent memory: 275 million records allegedly stolen 3.65 TB of data taken from roughly 8,800+ schools Harvard, Stanford, Columbia, Duke, UNC, and other institutions impacted ~330 Canvas login portals defaced with ransomware messages Instructure later announced it had “reached an agreement” with attackers 2. AI Builds the First Confirmed Zero-Day Exploit Google's Threat Intelligence Group confirmed a major escalation: AI used to create a working zero-day exploit Attack specifically targeted two-factor authentication protections Signals a shift in offensive cyber capabilities previously associated with nation-state actors AI is no longer just assisting attackers it's helping build the attacks themselves 3. BlackFog Q1 2026 Report The Hidden Ransomware Crisis The public only sees a fraction of what's happening: 2,160 undisclosed ransomware attacks vs. 264 disclosed Only 1 in 9 attacks becomes public Average ransom demands surpassed $1 million Data stolen in 96% of incidents before encryption Backups alone are no longer enough The Bottom Line Cybersecurity is entering a new phase. AI is accelerating offensive capabilities Ransomware groups are operating in the shadows And organizations are quietly paying attackers to keep breaches out of public view This isn't just a technology problem anymore. It's an operational reality every business leader needs to understand. Support the show: buymeacoffee.com/securitysquawk Subscribe for weekly breakdowns of ransomware, cybercrime, AI threats, and executive-level cybersecurity strategy.

Tech Update | BNR
Onderwijsplatform Canvas moet weer veilig zijn na deal met hackers

Tech Update | BNR

Play Episode Listen Later May 12, 2026 5:01


Canvas, het onderwijsplatform met zo'n dertig miljoen gebruikers waaronder van Nederlandse universiteiten, moet weer veilig te gebruiken zijn. Dat zegt Instructure, het bedrijf achter Canvas, nadat het een deal heeft gesloten met hackersgroep ShinyHunters, die in dat kader gestolen gegevens zouden hebben vernietigd. Joe van Burik vertelt erover in deze Tech Update. Verder in deze Tech Update: Microsoft-topman Satya Nadella heeft getuigd in de rechtszaak die Elon Musk aanspande jegens Sam Altman en OpenAI See omnystudio.com/listener for privacy information.

Cyber Security Today
Canvas Breach Exposes 275M Accounts | AI Targets Water Systems | GM OnStar Settlement

Cyber Security Today

Play Episode Listen Later May 11, 2026 16:55


A massive cybersecurity week. On this episode of Cybersecurity Today, David Shipley breaks down the reported breach of Instructure's Canvas learning platform, where attacks linked to the ShinyHunters extortion group may have exposed data tied to up to 275 million user accounts across more than 9,000 educational institutions. The incident disrupted access, delayed exams, and forced Instructure to disable its "Free for Teacher" program after attackers allegedly used it to post extortion messages. Also in this episode: the Gentlemen ransomware group suffers a major internal leak, exposing affiliate chats, tooling, victim data, and operational details — a rare look inside a live ransomware operation. Then, General Motors agrees to a $12.75 million California settlement over allegations involving OnStar-linked driver data collection and sharing, raising fresh questions about privacy in connected vehicles. And finally: security researchers report what appears to be the first documented AI-assisted operational technology (OT) cyberattack attempt targeting a water utility in Monterrey, Mexico. The attempt failed to reach industrial control systems, but combined with confirmed attacks on water infrastructure in Poland, it signals a worrying shift in critical infrastructure threats. If you work in cybersecurity, IT, infrastructure, education, or privacy, this episode matters. Chapters 00:00 Top Headlines Rundown 00:41 Canvas Mega Breach 02:44 ShinyHunters Background 03:26 Ransom Pressure Fallout 04:25 Gentlemen Ransomware Leak 05:18 Inside the Data Dump 06:18 GM OnStar Privacy Settlement 08:17 What Drivers Should Know 09:39 AI Meets OT Attacks 11:52 Monterrey Water Near Miss 13:29 Poland Water Systems Hit 15:07 Defending Critical Infrastructure 16:29 Wrap Up And Thanks #Cybersecurity #Canvas #ShinyHunters #Ransomware #OnStar #GeneralMotors #DataBreach #CriticalInfrastructure #WaterUtility #OperationalTechnology #ICS #CyberAttack #Privacy #DavidShipley #CybersecurityToday

Minimum Competence
Legal News for Mon 5/11 - Legal Hiring Up, VA Redistricting Battle, Canvas Suits for Breach and Trump's Latest Tariff Appeal

Minimum Competence

Play Episode Listen Later May 11, 2026 7:07


This Day in Legal History: Christmas is Canceled in MassachusettsOn May 11, 1659, the Massachusetts Bay Colony passed a law making it illegal to celebrate Christmas. The law imposed a fine of five shillings on anyone who observed the holiday by feasting, taking the day off from work, or engaging in other forms of celebration. To modern readers, this can sound like a strange kind of anti-holiday law, but it reflected the religious and legal culture of Puritan New England. Many Puritans rejected Christmas because they believed it had no clear biblical foundation and was associated with Catholic tradition, disorderly public behavior, and old English customs they considered improper. In their view, the law was not merely about stopping a party; it was about enforcing a disciplined religious society.The colony's leaders used law as a tool to shape public morality, religious practice, and daily life. This was common in early colonial legal systems, where civil authority and religious authority were often closely connected. The Christmas ban also shows how different early American ideas of “religious liberty” could be from later constitutional understandings. Rather than protecting a broad right to celebrate or worship differently, the Massachusetts Bay Colony often used law to preserve a particular religious order. The five-shilling fine was not enormous, but it was meaningful enough to signal that Christmas observance was legally disfavored.The law remained part of a broader colonial effort to regulate conduct that officials believed threatened communal discipline. Over time, attitudes toward Christmas changed, especially as New England became more religiously diverse and less strictly Puritan. The episode stands as a reminder that American legal history includes not only the expansion of rights, but also earlier moments when law was used to suppress customs now considered ordinary.The legal industry added 2,400 jobs in April, bringing total sector employment to about 1.24 million, according to seasonally adjusted data from the U.S. Bureau of Labor Statistics. That was a rebound from a small decline in March and placed legal employment slightly above both March and February levels. Compared with the same time last year, the sector had 20,800 more jobs. The legal sector numbers include lawyers, paralegals, and other legal-related professional roles.The rebound follows a long stretch of legal industry growth that was interrupted by March's dip. Two major firms recently announced job cuts: McDermott Will & Schulte is trimming a small number of associates, while Allen Overy Shearman Sterling is reducing roles in its business services team. Across the broader U.S. economy, employers added 115,000 jobs in April, while the unemployment rate stayed at 4.3%.Legal Industry Bounces Back, Gaining 2,400 Jobs In April - Law360Virginia's Supreme Court struck down a Democratic-backed congressional map that had been designed to improve the party's chances in four Republican-held U.S. House districts. The court ruled 4-3 that Democratic lawmakers failed to follow the proper process when they moved quickly to put the redistricting plan before voters. The map had been approved by voters in an April special election, but Republicans challenged the measure, arguing that the required intervening election had not properly occurred before the second legislative approval. The court's majority agreed, emphasizing that more than 1.3 million early votes had already been cast by the time lawmakers first approved the proposed constitutional amendment.Democrats criticized the ruling as overriding the will of voters, while Republicans celebrated it as a major win ahead of the midterm elections. Virginia Democrats said they would seek emergency review from the U.S. Supreme Court. The ruling could make it harder for Democrats to regain control of the U.S. House, where Republicans hold a very narrow majority. The dispute is part of a broader national fight over mid-cycle redistricting, with both parties seeking favorable maps before the November elections. Republican-led states in the South are pursuing their own redistricting efforts after a recent U.S. Supreme Court decision weakened a key part of the Voting Rights Act. Election analyst Kyle Kondik said the Virginia ruling improves Republican odds, though broader political conditions could still affect the outcome in November.Virginia court tosses Democratic map, dealing major blow to party's midterm hopes | ReutersInstructure, the company behind the Canvas learning management platform, is facing at least seven proposed class actions after disclosing unauthorized activity in its system. Canvas is widely used by schools and universities to manage coursework, grades, assignments, and communications. Instructure first announced the incident on May 1, then later reported more unauthorized activity connected to the same breach and temporarily took Canvas offline. The company has since restored much of the platform, but its Free-for-Teacher accounts remain disabled because Instructure believes a vulnerability there may have been exploited.The lawsuits, filed in Utah and New York federal courts, accuse Instructure of failing to adequately protect personal information belonging to students, teachers, and staff. The data allegedly at risk includes names, email addresses, student ID numbers, private messages, enrolled courses, and confidential communications with teachers. The complaints say the hacking group ShinyHunters claimed to have accessed information tied to more than 275 million users.Plaintiffs argue Instructure should have used stronger safeguards, including better encryption, access controls, employee training, monitoring, and protocols for handling sensitive data. They also claim affected users now face loss of control over their information and a heightened risk of identity theft. One New York plaintiff also sued KKR, which acquired Instructure in 2024, and argued the breach was foreseeable in light of earlier major attacks on education software companies. Instructure has said it is investigating, communicating with affected customers, and strengthening protections around access, permissions, token management, monitoring, and related workflows.EdTech Platform Canvas Accused Of Lax Security After Breach - Law360The Trump administration appealed a U.S. Court of International Trade ruling that rejected its use of a 1970s trade law to impose a 10% global tariff. The court ruled 2-1 that Section 122 of the Trade Act of 1974 was not designed to address trade deficits caused by the United States importing more goods than it exports. The decision only blocked the tariffs as applied to the three plaintiffs who sued: two small businesses and the state of Washington. Even though the tariffs were temporary and set to expire in July unless Congress extended them, the ruling marked another legal setback for the administration's broader tariff agenda.The case followed a separate Supreme Court decision that invalidated earlier Trump tariffs imposed under the International Emergency Economic Powers Act. After that loss, the administration turned to Section 122 as a replacement authority for a 10% import tariff. President Trump criticized the trade court's ruling, while U.S. Trade Representative Jamieson Greer said the administration expected to win on appeal. The dispute could lead to another major fight over tariff refunds, potentially involving billions of dollars. The timing is also significant because the ruling came shortly before Trump was scheduled to meet Chinese President Xi Jinping to discuss trade tensions.The administration is separately pursuing broader tariffs under Section 301 of the Trade Act, which addresses unfair trade practices and has survived past legal challenges.Trump administration appeals latest court loss on tariffs | Reuters This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit www.minimumcomp.com/subscribe

Scrolling 2 Death
The Canvas Breach: 275 Million People at Risk (with attorney Andy Liddell)

Scrolling 2 Death

Play Episode Listen Later May 11, 2026 24:34


When parents log into Canvas, they expect homework assignments and grades — not ransom notes.In this urgent episode, I spoke with attorney Andrew Liddell about the massive alleged breach involving Instructure and its learning management platform, Canvas, reportedly affecting thousands of schools and millions of students, teachers, and college faculty worldwide.Here's a full list of the 8,000+ schools which were affected.Andy breaks down:What Canvas is and why it's used in so many schoolsHow enormous amounts of student data are collected and sharedWhat allegedly happened in the breachWhy hackers targeted this informationWhat exposed school data could mean for families long-termWhy schools are becoming “soft targets” for cyberattacksWhat parents should do right now if their child's school uses CanvasThe conversation also goes beyond this single breach and explores a larger question: Have schools quietly normalized mass surveillance of children through EdTech?Andy explains why privacy isn't just about secrecy — it's about childhood itself.“Privacy is the soil in which we grow.”This episode is essential listening for parents, teachers, school administrators, and anyone concerned about the growing role of Big Tech in education.Contact Andy's team at edtech.law to find out more about this lawsuit and others. Here's a direct link to their lawsuit against Instructure.

Defence Connect Podcast
CYBER UNCUT: AI security woes, Aussie schools caught in international breach, and ThreatLocker's Rob Allen

Defence Connect Podcast

Play Episode Listen Later May 11, 2026 41:20


Australian students and teachers have been compromised by an international data breach, with thousands of kids likely impacted. David Hollingworth and Daniel Croft break down how it happened, why it matters, and what schools need to do to protect themselves. PLUS! Cyber Daily partners with Austrade to bring you a series of interviews direct from the RSA Conference 2026. Artificial intelligence is having an impact on almost every industry, and finance is no exception – that's why the US Federal Reserve is helping the sector navigate the global impact of AI. And while organisations are adopting the technology at pace, they're often too slow to secure it. Understand why that matters and what your organisation can do. The big news of the week stems from a breach of cloud education platform provider Instructure, and Aussie schools – and staff and students – have already been compromised. Find out what happened, who did the hacking, and what it means for the education sector at large. If you're a school CISO, this is vital information! Finally, the podcast wraps up with a pair of special guests, as Austrade's investment director at the Australian embassy in Washington sits down with ThreatLocker's Rob Allen to talk about the company's philosophy, its operations in Australia, and the importance of application control in the modern enterprise. Just another week in cyber security. Enjoy, The Cyber Uncut team

Get Legit Law & Sh!t
What We Know About The Canvas Hack During Finals | Case Brief

Get Legit Law & Sh!t

Play Episode Listen Later May 10, 2026 16:08


Watch the full coverage of the live stream on The Emily D. Baker YouTube channel: https://youtu.be/TZcwvptBlhE  In this  Case Brief, we look at the massive data breach at Instructure, the parent company of the Canvas learning management platform, has sent shockwaves through the educational world. Affecting an estimated 9,000 schools and over 275 million individuals—including students, teachers, and staff—this cyberattack by the group ShinyHunters has disrupted finals week for thousands of users worldwide. RESOURCES Canvas Hack Article - https://www.usatoday.com/story/tech/news/2026/05/08/canvas-back-online-cyberattack-data-breach/89991038007/ Reuters Article - https://www.reuters.com/legal/litigation/schools-reach-out-hackers-canvas-breach-hits-us-classrooms-source-says-2026-05-08/ Learn more about your ad choices. Visit podcastchoices.com/adchoices

Church & Culture Podcast
CCP194: On Leading Gen Z

Church & Culture Podcast

Play Episode Listen Later May 8, 2026 30:56


Once again, Alexis Drye is joined on the podcast by a guest - this time Pastor Zach White, Zach is the pastor of the creative arts ministry (known as Meck Creative) at Mecklenburg Community Church. The topic for discussion for today's episode is on leading and equipping Gen Z in the workplace, and so we thought he would bring a unique perspective, as the majority of his team falls into this cohort. Episode Links Alexis mentioned an article written by Tessa West in The Wall Street Journal that prompted today's discussion. Titled “A New Lost Generation: Why Gen Z Is Unprepared for the Workplace,” this article - along with others like it - explores the important role that leaders need to play in helping their Gen Z employees navigate their organizations. Zach mentioned a helpful resource for people who may interact a lot with Gen Z. It was written by Dr. White, and while primarily written for the church to know how to reach them for Jesus, it also can serve to help understand what marks this generation. It's called Meet Generation Z and you can find it HERE. Zach also mentioned the depressing findings of a recent survey from Instructure, which found that 87% of Gen Z workers feel unprepared to succeed in the workforce. You can read the full article in Campus Technology for more results of the survey HERE. It's in helping them to overcome feelings like this where leaders need to step in and guide them. To help fill that type of leadership role, Zach has a podcast leadership community that you can find on YouTube at @ZachWhiteLeadership. The purpose is to serve leaders looking to grow, thrive and last in leadership. Every week, he releases new research-driven content that's designed to help you have a truly meaningful and lasting leadership journey. For those of you who are new to Church & Culture, we'd love to invite you to subscribe (for free of course) to the twice-weekly Church & Culture blog and check out the Daily Headline News - a collection of headlines from around the globe each weekday. We'd also love to hear from you if there is a topic that you'd like to see discussed on the Church & Culture Podcast in an upcoming episode. You can find the form to submit your questions at the bottom of the podcast page HERE.

Engadget
Instructure hackers claim they stole data from nearly 9,000 schools, Nintendo is raising Switch 2 prices as chip crisis bites, and Bumble replacing swiping

Engadget

Play Episode Listen Later May 8, 2026 7:52


-ShinyHunters, the extortion group that infiltrated cloud-based educational tech provider Instructure, claims to have stolen data from 8,809 schools around the world. -Nintendo is raising the price of its Switch 2 by $50 to $500 in the US as it faces higher memory costs and US tariffs. -According to an Axios report, rather than asking users to swipe right or left on a profile to confirm their interest or disinterest in a potential match, the dating app is replacing it with something else. Learn more about your ad choices. Visit podcastchoices.com/adchoices

Cyber Security Uncut
AI security woes, Aussie schools caught in international breach, and ThreatLocker's Rob Allen

Cyber Security Uncut

Play Episode Listen Later May 8, 2026 41:20


Australian students and teachers have been compromised by an international data breach, with thousands of kids likely impacted. David Hollingworth and Daniel Croft break down how it happened, why it matters, and what schools need to do to protect themselves. PLUS! Cyber Daily partners with Austrade to bring you a series of interviews direct from the RSA Conference 2026. Artificial intelligence is having an impact on almost every industry, and finance is no exception – that's why the US Federal Reserve is helping the sector navigate the global impact of AI. And while organisations are adopting the technology at pace, they're often too slow to secure it. Understand why that matters and what your organisation can do. The big news of the week stems from a breach of cloud education platform provider Instructure, and Aussie schools – and staff and students – have already been compromised. Find out what happened, who did the hacking, and what it means for the education sector at large. If you're a school CISO, this is vital information! Finally, the podcast wraps up with a pair of special guests, as Austrade's investment director at the Australian embassy in Washington sits down with ThreatLocker's Rob Allen to talk about the company's philosophy, its operations in Australia, and the importance of application control in the modern enterprise. Just another week in cyber security. Enjoy, The Cyber Uncut team

Cyber Security Headlines
Instructure discloses breach, DigiCert revokes certificates, Silver Fox targets Indian and Russian orgs

Cyber Security Headlines

Play Episode Listen Later May 5, 2026 7:34


Instructure discloses breach amid leak threats DigiCert revokes certificates Silver Fox targets Indian and Russian orgs Get the show notes here: https://cisoseries.com/cybersecurity-news-instructure-discloses-breach-digicert-revokes-certificates-silver-fox-targets-indian-and-russian-orgs/ Thanks to our episode sponsor, Vanta Risk and regulation ramping up—and customers expect proof of security just to do business. Vanta's automation brings compliance, risk, and customer trust together on one AI-powered platform. So whether you're prepping for a SOC 2 or running an enterprise GRC program, Vanta keeps you secure—and keeps your deals moving. Learn more at vanta.com/ciso.

Security Squawk
TSYS Ransomware Attack, Canvas Data Breach & HIPAA Security Failures Explained

Security Squawk

Play Episode Listen Later May 5, 2026 41:25


A major U.S. payment processor just got hit by ransomware, again. TSYS, one of the largest payment processors in the country, has been attacked by the Everest ransomware group for the second time in five years. Industry experts warned this was coming. It happened anyway. At the same time, ShinyHunters claims it stole 275 million records from Instructure, the company behind Canvas, the learning platform used by over 9,000 schools. Names, student IDs, and billions of private messages between students and teachers are now at risk. And in healthcare, regulators just fined four companies $1.165 million for ransomware-related failures, not because they were hacked, but because they ignored basic security requirements that have been in place since 2003. In one case, attackers sat inside a network for 16 months undetected. These aren't advanced attacks. These are failures to do the fundamentals. This Week's Cybersecurity Breakdown 1. TSYS Ransomware Attack (Everest Group) A repeat breach at a major payment processor: Systems encrypted and data exfiltrated Second major incident in five years Also impacts Fiserv Raises serious questions about systemic risk in payment infrastructure 2. Instructure / Canvas Data Breach (ShinyHunters) Massive education sector exposure: 275 million records allegedly stolen Student data, IDs, and private communications compromised Root cause: Salesforce misconfiguration Potential impact across 9,000+ schools 3. HHS HIPAA Fines for Ransomware Failures Regulatory enforcement is accelerating: $1.165 million in fines across four companies Failure to complete required security risk assessments One breach went undetected for 16 months OCR has now completed 19 ransomware investigations with the same pattern The Bottom Line These attacks aren't breaking through defenses. They're walking through doors that were never closed. Misconfigurations Missing risk assessments Known vulnerabilities left unpatched This isn't a technology problem. It's an execution problem. Support the show: buymeacoffee.com/securitysquawk Subscribe for weekly breakdowns of real-world cyber threats, ransomware attacks, and executive-level security insights.

Ochtendnieuws | BNR
Avondnieuws: Hack bij onderwijssoftware Canvas raakt Nederlandse instellingen

Ochtendnieuws | BNR

Play Episode Listen Later May 5, 2026 24:09 Transcription Available


Bij een grote hack op onderwijsplatform Canvas zijn gegevens buitgemaakt van studenten en medewerkers van tientallen Nederlandse onderwijsinstellingen. Het gaat onder meer om namen, e-mailadressen, studentnummers en onderlinge chatberichten, die door hackersgroep ShinyHunters op het darkweb zijn geplaatst na mislukte onderhandelingen met Canvas-eigenaar Instructure. Scholen wordt geadviseerd hun ICT-afdelingen en gespecialiseerde cybersecuritybedrijven in te schakelen om te achterhalen of zij op de gelekte lijst staan. In Roemenië is de regering van premier Ilie Bolojan gevallen nadat een motie van wantrouwen van de sociaaldemocratische PSD en de radicaalrechtse AUR is aangenomen. President Klaus Johannis kondigt aan Roemenië op een pro-Europese en pro-westerse koers te willen houden, terwijl lastige coalitieonderhandelingen over een nieuwe regering worden verwacht. Tegelijkertijd investeert de EU 2,5 miljard euro in Armenië, onder meer in defensie en een civiele missie tegen cyberaanvallen en desinformatie, in een poging het land dichter bij Europa te brengen. De Nederlandse quantumchipproducent Quantware uit Delft haalt 152 miljoen euro op in een nieuwe investeringsronde, met onder anderen Intel en het door de CIA opgerichte In-Q-Tel als investeerders. Het bedrijf ontwikkelt chips en een eigen architectuur voor quantumcomputers en bouwt in Delft een productiefaciliteit, de zogenoemde Kilofab, om de technologie op grotere schaal te produceren. Quantware ziet zichzelf als internationaal bedrijf maar houdt zijn hoofdkantoor en productiebasis in Nederland, terwijl het zich richt op verdere groei in de mondiale markt voor quantumtechnologie. Deze omschrijving is met AI gemaakt en gecontroleerd door een BNR-redacteur. Over deze podcast BNR Nieuws Vandaag is de podcast met daarin BNR Ochtendnieuws en BNR Avondnieuws. Je krijgt ’s ochtends vroeg en aan het einde van de werkdag in 20 minuten het belangrijkste nieuws van de dag. Abonneer je via bnr.nl/podcast/bnrnieuwsvandaag, de BNR-app, Spotify en Apple Podcasts. Of luister elke dag live via bnr.nl/live.See omnystudio.com/listener for privacy information.

Tech Update | BNR
ShinyHunters hackt moederbedrijf achter onderwijssoftware Canvas

Tech Update | BNR

Play Episode Listen Later May 4, 2026 5:53


Het gaat om het Amerikaanse bedrijf Instructure, het moederbedrijf achter onderwijssoftware Canvas. Wereldwijd zouden er zo'n 9.000 scholen en 275 miljoen mensen de dupe zijn geworden van deze hack. Tot nu toe lijkt het te gaan om namen, e-mailadressen, studentnummers en berichten tussen gebruikers die zijn gestolen. Het leerplatform wordt ook door veel Nederlandse studenten gebruikt. Rosanne Peters vertelt erover in deze Tech Update. Voor ShinyHunters is het nu een kwestie van losgeld ontvangen of het openbaar maken van de gestolen gegevens. De deadline zou staan op woensdag 6 mei. Ondertussen loopt het onderzoek door en is Instructure extra voorzichtig. Zo moet bijvoorbeeld de toegang tot sommige geïntegreerde tools in Canvas opnieuw worden verleend. Instructure werd vorig jaar nog onder de loep genomen door SURF, de ict-coöperatie van het Nederlandse onderwijs en onderzoek. Het ging hier om een data protection impact assessment (DPIA) om risico's in de beveiliging van Canvas op te sporen. Of er een verband zit tussen de gevonden risico's en deze hack is onduidelijk. Verder in deze Tech Update: De campagne van het ministerie van Economische Zaken en Klimaat 'Doe je updates' - om slimme apparaten up to date en veilig te houden - heeft geen zoden aan de dijk gezet See omnystudio.com/listener for privacy information.

Infosec Decoded
Instructure Hacked

Infosec Decoded

Play Episode Listen Later May 4, 2026 20:07


Infosec Decoded Season 6 #32: Instructure HackedWith sambowne@infosec.exchange and Doug SpindlerLinks: https://samsclass.info/news/news_050426.htmlRecorded Mon, May 4, 2026

The Business of Learning
The Business of Learning, Special Episode: A CLO's Look at L&D in the Future of Work

The Business of Learning

Play Episode Listen Later Apr 30, 2026 26:45


Learning and development (L&D) is stepping into a more strategic role as organizations navigate constant change, evolving skill demands and the growing influence of artificial intelligence (AI). As expectations shift, how can L&D teams adapt? In this episode of The Business of Learning, sponsored by Instructure, we spoke with Melissa Loble, chief learning officer at Instructure, to explore how L&D is evolving in the future of work and what it takes to stay relevant in an increasingly complex environment. Tune in now for insights on: Why L&D is becoming a key driver of organizational success How AI is transforming learning design and development The skills CLOs need now to stay competitive How to align learning strategies with business outcomes

Trending In Education
Talking Outcomes-Based Literacy with Really Great Reading CEO Karl Rectanus

Trending In Education

Play Episode Listen Later Apr 21, 2026 21:58


Coming to you live from the harbor terrace in sunny San Diego, Mike Palmer sits down with Karl Rectanus, the new CEO of Really Great Reading, amidst the buzz of the ASU+GSV Summit. Between views of sailboats and silver-lined clouds, the duo digs into why literacy remains the fundamental building block of the educational system and how we might finally be cracking the code on systemic improvement. Karl shares his unique path to leadership, which began with chasing a girl to Australia and starting a digital Q&A service for children museums during the 2000 Sydney Olympics. This early taste of working through the system to help students sparked an entrepreneurial journey that led him to found LearnPlatform in 2014, where he pioneered rapid cycle evaluation to determine if EdTech tools actually work. Now, after LearnPlatform's acquisition by Instructure, Karl is focusing his energy on a 20-year-old organization dedicated to the science of reading. The conversation highlights the "Mississippi Marathon," a state-level commitment to literacy that saw improvements in reading lead to even higher gains in math and science. Karl points out that while many schools of education have historically failed to teach the science of reading, organizations like RGR are filling that gap by giving teachers the confidence and tools to deliver results. A major theme of this live session is the shift toward outcomes-based contracting. Karl argues that instead of just selling books or assessments, providers should be held accountable for whether students actually learn to read. He also addresses the role of AI in the classroom, drawing on his experience chairing the Industry Council for EdSafe AI to discuss how technology can provide universal screeners and personalization without succumbing to "cognitive offloading". With the goal of taking schools from low proficiency to 75% in just two years, this episode is a call to action for the industry to prioritize literacy outcomes over mere tools. Stay tuned to the feed as we continue to ship more episodes from San Diego all week! Episode Time Stamps [00:00] Introduction to Karl Rectanus live at the harbor terrace [01:00] Chasing a girl to Australia and the origin of the entrepreneurial bug [02:00] Answering Olympic questions for kids museums at a fourth-grade level [03:00] Building LearnPlatform for rapid cycle evaluation of EdTech [04:00] Stepping into the CEO role at Really Great Reading [05:00] The "last infinite mile" of implementation and practice [06:00] Foundational skills building for pre-K through adolescence [07:00] Moving from the "Mississippi Miracle" to the "Mississippi Marathon" [08:00] Why many schools of education don't teach the Science of Reading [09:00] Literacy as the enabling factor for math and science success [10:00] Transitioning to a dedicated literacy outcomes organization [11:00] The "plumbing" of the system and procurement challenges [12:00] Playful learning and why students love RGR more than field trips [13:00] Safe and effective AI with the EdSafe AI Industry Council [14:00] Leveraging AI for operational efficiency and better execution [15:00] Using AI for universal screeners and real-time personalization [16:00] Addressing the crisis where two-thirds of students are below grade level [17:00] The boldness of holding providers accountable for reading results [18:00] Why the real work happens after the curriculum adoption [19:00] Managing complicated schools with high poverty and teacher shortages [20:00] Rapidly scaling reading proficiency in turnaround school districts [21:00] Prioritizing literacy to improve every facet of the system

HLTH Matters
Bringing Clarity to Healthcare Payments with Ted Ferrin, SVP of Payments Innovation at Zelis

HLTH Matters

Play Episode Listen Later Apr 7, 2026 16:04


Healthcare payments are often discussed as a transparency problem, but the deeper issue is structural fragmentation across contracts, claims, remittances, and workflows. In this episode, Ted Ferrin, Senior Vice President of Payments Innovation at Zelis, explains how the acquisition of Rivet is bringing provider-facing payment intelligence into Zelis's broader infrastructure. He discusses why achieving financial clarity between payers and providers has been so difficult due to fragmented systems and legacy technology. Ted highlights that true transparency goes beyond simply displaying data and requires meaningful, actionable insights. He also shares how tools like Claims Insights and Zap Edge embed intelligence into payment workflows to reduce rework, improve visibility, and create a smoother experience for providers, payers, and patients. Tune in and learn how better payment intelligence could help turn transparency from a buzzword into real operational trust.  About Ted Ferrin: Ted Ferrin is Senior Vice President of Payments Innovation at Zelis, where he focuses on building solutions that improve healthcare payments and strengthen financial clarity for providers. He joined Zelis through its acquisition of Rivet, the company he founded and led as CEO for more than eight years. Before Rivet, Ted held leadership and sales roles at Canopy, Instructure, and Qualtrics. His work has centered on building organizations, products, and customer-focused growth strategies, with a particular passion for making healthcare more efficient and easier to use for providers. He studied psychology and business management at Brigham Young University.  Things You'll Learn: Healthcare payment transparency breaks down when contracts, claims, remittances, and analytics all live in disconnected systems. True transparency requires clean, normalized data delivered in real time within workflows, not just static reporting. Providers still face a major administrative burden because the old payment infrastructure often forces manual reconciliation and rework. Shared financial clarity can improve trust by reducing disputes, errors, delays, and unnecessary administrative effort for both providers and payers. Embedding payment intelligence at the point of transaction can help organizations move from passive visibility to more actionable decision-making.  Resources: Connect with and follow Ted Ferrin on LinkedIn. Follow Zelis on LinkedIn and visit their website. 

The Radcast with Ryan Alford
70% of Workers Feel Unprepared: How Instructure Is Rethinking Learning with Ryan Lufkin

The Radcast with Ryan Alford

Play Episode Listen Later Mar 24, 2026 26:51


New data shows that nearly 70% of workers feel unprepared for today's workforce, raising bigger questions about how we define job readiness. In this episode, Ryan Alford sits down with Ryan Lufkin of Instructure to unpack what's actually broken in education and how AI is accelerating the gap between learning and real-world skills. They explore why AI isn't replacing expertise but instead demands stronger critical thinking, communication, and human judgment. The conversation also challenges whether schools are teaching the wrong things—or simply teaching them the wrong way. From the rise of lifelong learning to the debate between skills and degrees, this episode highlights what both employers and educators need to rethink to prepare the next generation. What We Covered 70% of workers feel unprepared – What's driving the growing skills gap in today's workforce AI in education and work – Why AI requires more expertise, not less Skills vs degrees – Are traditional degrees still the best signal for employers? The problem with modern education – Teaching the wrong things vs teaching the wrong way Lifelong learning – Why continuous upskilling is now required for career growth Breaking workplace “boxes” – How AI is empowering employees to operate across roles Connect with the Guest Ryan Lufkin VP of Global Strategy — Instructure (Canvas) Website: https://www.instructure.com LinkedIn: https://www.linkedin.com/in/ryanlufkin Podcast: EduCast3000 Connect with the Host Ryan Alford Host — Right About Now Website RyanIsRight.com Instagram: https://instagram.com/ryanalford LinkedIn: https://linkedin.com/in/ryanalford

The American Vandal, from The Center for Mark Twain Studies
The Secret History of Canvas LMS, Corporate Raiders, & The Chatbot Bubble (Vandal Live at UVU)

The American Vandal, from The Center for Mark Twain Studies

Play Episode Listen Later Mar 24, 2026 112:00


Opens with Matt Seybold's short history of Instructure, the makers of Canvas LMS, with special emphasis on its acquisition by Dragoneer and KKR in 2024. This talk was delivered at Utah Valley University, with supplemental recording from University of Albany. The second half of the episode features a conversation with UVU faculty and students about the impact of the Generative AI boom on their institution. Cast (in order of appearance): Matt Seybold, Christa Albrecht-Crane, Angie McKinnon Carter, Chiler Moore Date Recorded: March 3, 2026 Music: Danny Weiss Quartet, Moby

Adpodcast
Neal Bloom - General Partner - Rising Tide Ventures

Adpodcast

Play Episode Listen Later Mar 10, 2026 12:40


Neal Bloom is a San Diego-based venture capitalist, entrepreneur, and ecosystem builder in the tech and startup space. A Southern California native, he studied mechanical engineering at UC San Diego (UCSD) and early in his career worked with NASA on the Space Shuttle Main Engines and aspects of the Artemis program.He co-founded the edtech startup Portfolium, which was acquired by Instructure. This experience transitioned him into angel investing, where he built strong networks in the San Diego tech community. He has been involved with Tech Coast Angels and co-founded an angel syndicate.Currently, Neal serves as Managing Partner (or General Partner) at Rising Tide Partners, an early-stage investment group focused on curating signal in the noise to back exceptional founders, particularly in innovative tech solving real-world problems. He previously held a similar role as co-founder and Managing Partner at Interlock Capital, an early-stage fund and community of experienced operators.With nearly 20 years in tech, he's passionate about fostering startup ecosystems—advising on community building, events, and public outreach. He runs the Rising Tide Partners Substack (covering tech trends, AI, hard tech, and San Diego venture insights), hosts or contributes to podcasts/talks (e.g., Tacos and Tech), and is active in San Diego's startup scene through groups like Startup San Diego (where he's held leadership roles in sponsorships and partnerships).He's a frequent speaker, LinkedIn thought leader (15K+ followers), and connector in areas like AI for Main Street businesses, hard tech, and regional innovation hubs. Neal has appeared on podcasts and at events like TechCon Global discussing AI, investing, and ecosystem growth.

Building Better CMOs
Build Something or Fix Something with Instructure CMO Armin Molavi

Building Better CMOs

Play Episode Listen Later Feb 4, 2026 58:32


Armin Molavi spent 20 years working in agencies before transitioning to client-side marketing at Hilton, then building a successful fractional CMO practice serving private equity-backed companies. Currently, he's the CMO at Instructure, which makes the ubiquitous learning management system Canvas."25 years of B2C, and this is my very first B2B gig, so I've been learning a lot," Armin says. "What's the saying? Like drinking from a fire hydrant?"But at a fundamental level, he explains, B2B is not so different from what he's spent most of his career doing."At the end of the day, I have to convince people that if they give up their budget for what I have to sell, it's going to make their life better at work," he adds. "That's what marketing is."Today on Building Better CMOs, Armin and Greg Stuart discuss what marketers should know about working with private equity firms, why agencies and clients both need to be better partners to each other, and the life-changing career advice he received from Kellyn Kenny. They also discuss why marketers need to drop the jargon and start connecting their work to enterprise value if they want a seat at the table. ⁠⁠⁠⁠⁠Full transcript⁠⁠⁠⁠⁠ This episode was produced and edited by Eric Johnson from ⁠⁠⁠⁠⁠LightningPod⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ ⁠⁠⁠⁠Follow Building Better CMOs in your podcast app⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ ⁠⁠⁠⁠Rate and review the podcast⁠⁠⁠⁠ ⁠⁠⁠⁠ ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Armin's LinkedIn⁠⁠⁠⁠⁠⁠⁠⁠ ⁠⁠⁠⁠Greg's LinkedIn

K-12 Greatest Hits:The Best Ideas in Education
The AI Tech Fatigue of 2025 Was Real: What Educators Are Doing to Regain Control in 2026

K-12 Greatest Hits:The Best Ideas in Education

Play Episode Listen Later Feb 1, 2026 18:37


The numbers tell the story. For the 2023-24 school year, school districts accessed an average of 2,739 distinct edtech tools annually, an increase of 8% from the previous school year. This episode looks back at how educators navigated the flood of AI tools in classrooms in 2025—and looks ahead to what 2026 demands. We explore the rise of Agentic AI, from early chatbots to autonomous systems reshaping recruitment, communication, and curriculum at places like Arizona State University and companies such as Bloomz. We also confront hard questions about academic integrity raised by tools like Perplexity Comet and examine how efforts from Chan Zuckerberg Initiative and ISTE aim to restore rigor, trust, and AI literacy. Related Sources: Easing the Burden on Schools: Five Quality Indicators for Edtech & AI Products | Average District Tech Tools | Scaling Proven Learning Practices| Navigating EdTech Quality: The 5 Indicators | Unpacking LA Unified School District's AI Chatbot Debacle w/ Fonz Mendoza | Agentic AI: A Wake-Up Call to Educators | Agentic AI and the Student Experience with Lev Gonick | Canvas, Credentials, and the Agentic AI Classroom | Agentic AI is here. What does it mean for Online Education? | Alfonso Mendoza Jr., Ed.D: With over five years of experience in educational technology and leadership, Alfonso currently serves as District Assessment Coordinator at Sharyland ISD, where he focuses on integrating digital learning strategies and supporting curriculum alignment to enhance student outcomes. His work emphasizes the practical application of technology to meet real classroom needs. Anna Mills is a leader in integrating artificial intelligence into education, combining teaching experience with technical expertise and a commitment to open educational resources. Her work on AI literacy, academic integrity, and AI applications in higher education combines critical and tech-forward approaches. She currently teaches at College of Marin and has taught writing in community college settings for 18 years. Thomas Hummel is a teacher, coach, and Eduaide's Chief Product Officer. This means he is responsible for keeping one foot in the classroom to ensure we remain grounded in everyday practice. Thomas hails from a lineage of educators that spans three generations, deeply instilling in him an appreciation for the profound impact teachers have on society. Dr. Med Kharbach is an educator and AI in education researcher with 15+ years of experience in educational technology and teaching. He designs and delivers evidence-based learning experiences that strengthen AI literacy, enhance teacher training, and support professional development in both K–12 and higher education. His work blends pedagogy, digital literacy, critical thinking, and responsible AI integration. Tim Mousel has taught in higher education since 1993 and today serves as a full-time faculty member in the Kinesiology department at LSC-Online, as well as the Department Chair for Chemistry, Kinesiology, and Physics. He also leads the System-Wide AI Task Force, where he helps guide institutional strategy around emerging technologies. Sandra Liu Huang is a computer scientist. She leads the product team at the Chan Zuckerberg Initiative. Previously, she was the director of product management at Quora and an early and senior member of the product team at Facebook. Chakrapani “Chaks” Appalabattula is the founder and CEO of Bloomz, a popular communication app that connects teachers, parents, and schools through features like messaging, event scheduling, volunteer coordination, and student portfolio sharing, designed to improve parent engagement and streamline school-home communication. Tal Havivi is the Managing Director @ ISTE+ASCD. He works at the intersection of research, product development, and go-to-market strategy to make the edtech market more effective and better aligned with the realities of modern-day teaching and learning. Havivi leads a business unit that partners with leading edtech companies to reduce barriers to educator engagement and validate instructional quality. Lev Gonick: As the Enterprise Chief Information Officer at Arizona State University, he leads the design and agile management of all enterprise infrastructure, applications, products, services, and analytics at the nation's largest and most innovative university. Ryan Lufkin: In his role as VP of Global Academic Strategy at Instructure, the makers of Canvas, his research plays a pivotal part in shaping the company's worldwide vision and growth. Fostering partnerships, overseeing market research, identifying emerging trends, and driving innovation help propel Instructure's commitment to advancing education on a global scale. Richard Culatta, is the CEO of ISTE+ ASCD. Culatta is an innovative educational leader with experience in government, k-12, higher education, and adult learning settings. Areas of expertise include education policy, teacher preparation, educational technology, and innovation.

Next Pivot Point
321: The Future of Education in an AI-Driven World with Melissa Loble

Next Pivot Point

Play Episode Listen Later Nov 30, 2025 25:45


In my new interview with Melissa Loble, Chief Academic Officer at Instructure, we discussed the evolving educational landscape. She made a few key predictions for the future of education in an AI-driven world: 1. The Blended Curriculum: Academic Content Merges with Human and Career Skills The traditional focus on purely academic content will radically shift. The future curriculum will be a blend that incorporates three critical components: Academic Content: The core disciplinary knowledge. Human Skills (Soft Skills): Due to AI handling entry-level technical tasks, there will be an increased emphasis on human skills like critical thinking, decision-making, problem-solving, confidence, and courage. Educators will need to explicitly teach and build these skills, moving beyond simply teaching the application of theories. Workforce/Life Skills: Education will be directly connected to career and life trajectories, driven by learners (especially younger generations) seeking a clear return on investment (ROI) from their education and questioning the value of high debt. 2. Contextual and Experiential Learning Replaces Rote Memorization The age of simple memorization and regurgitation will end. The new focus will be on creating contextual, personalized, and experiential learning environments. Focus on Context: Educators must shift from solely valuing content (like in research/peer-review) to emphasizing context—the "why" and "how" the content is applied in the real world. Simulation and Application: There will be a greater use of simulations, case-based learning, and hands-on scenarios to help learners practice and apply human skills and technical knowledge, allowing them to fail fast and build competence. AI can assist in creating these complex, customized case studies and learning environments. Practitioner-Academic Collaboration: Higher education will increasingly benefit from practitioners joining the faculty to bring real-world context, working alongside traditional academics to enrich the learning experience. 3. Corporate and Higher Education Learning Forge a Strategic Partnership The line between corporate learning and higher education will blur as both seek to adapt to the needs of the modern workforce. Corporate Learning Shifts: Corporate training will move away from being purely compliance-driven toward a focus on developing human and career-track skills. Employees, particularly Millennials and Gen Z, actively seek employers who commit to developing them as future leaders. Continuous Development: The "one-and-done" training model will be replaced by a commitment to lifelong learning and continuous development. This will include meeting people where they are and using retrieval practice and open coaching to reinforce skills and build resistance to change. Joint Reinvention: Higher education and the corporate world have a significant opportunity to partner and reinvent themselves together to effectively address the blend of technical and human skill development needed for an AI-enabled future. Follow Melissa at https://www.instructure.com/

The Higher Ed Geek Podcast
Episode #304: Optimizing Tech Stacks to Elevate the Student Experience

The Higher Ed Geek Podcast

Play Episode Listen Later Nov 5, 2025 32:26


What happens when your institution has too many systems—and none of them talk to each other? In this episode, Dustin chats with Justin Beck, CEO of Gravyty, about how colleges and universities can stop tech creep from derailing the student experience. Drawing from his background at Apple, Blackboard, Salesforce, Instructure, and now Gravyty, Justin shares hard-earned insights on how schools can create a more connected, intuitive digital journey for students, staff, and alumni. From the power of omnichannel engagement to surprising AI-driven fundraising wins, Justin breaks down how to work smarter with the tech you already have—and how to stop chasing perfection at the expense of progress.Guest Name: Justin Beck - CEO at GravytyGuest Social: LinkedInGuest Bio: Justin Beck is the Chief Executive Officer of Gravyty, a leading provider of AI-driven engagement solutions for higher education and nonprofit institutions. With over two decades of experience in SaaS and education technology, Justin has built and led high-performing global teams across sales, customer success, revenue operations, marketing, and product enablement. He is driven by a deep belief in the power of technology to improve outcomes across the student and constituent lifecycle—from recruitment and retention to alumni engagement and fundraising. Prior to Gravyty, he served as Chief Commercial Officer at Xplor Technologies, a global, multi-vertical SaaS and embedded payments company serving over 100,000 customers in more than 30 markets.Justin's earlier leadership roles include SVP of Global Sales at Instructure (makers of Canvas), and senior positions at Salesforce, Kaltura, EverFi, Blackboard, and Apple. Across each organization, he has played a pivotal role in scaling revenue, entering new markets, and driving strategic transformation. A frequent advisor on go-to-market strategy in mission-driven sectors, Justin brings a blend of operational rigor and customer-centric thinking to every role. He lives in Cincinnati, Ohio, with his wife and their three sports-loving teenage children.  - - - -Connect With Our Host:Dustin Ramsdellhttps://www.linkedin.com/in/dustinramsdell/About The Enrollify Podcast Network:The Higher Ed Geek is a part of the Enrollify Podcast Network. If you like this podcast, chances are you'll like other Enrollify shows too!Enrollify is made possible by Element451 — The AI Workforce Platform for Higher Ed. Learn more at element451.com. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.