We are aware of and actively responding to a security breach affecting Instructure Canvas. Our team began taking protective action immediately upon learning of the incident.
Actions taken: - All Canvas Data 2 (CD2) data extract jobs have been disabled - Processing and writing of caliper events to all member UDP data stores has been suspended
Current impact: Downstream data pipelines dependent on CD2 or caliper event writes will not receive new data until further notice.
Next steps: We are monitoring Instructure's incident response and working with our contacts at various member institutions to assist where possible. Once the incident has passed we will restore services in a controlled manner once we can confirm the integrity of the CD2 and event data.
Further updates will be posted here as the situation develops.
Posted May 07, 2026 - 21:42 UTC
This incident affects: UDP - Caliper Ingestion, UDP - Batch ETL, and UDP - Marts.