top of page

BREAKING NEWS • FOR TIPS OR LEADS: DRCPARMY@GMAIL.COM • ADVERTISING: (313) 348-9421 • JOIN THE ARMY FOR EXCLUSIVE UPDATES •

DRCN Logo With the city skyline with DRCN and Detroit Rock City News over a shield in grey blue colors.
DRCN Detroit Rock City News logo

Cyberattack Paralyzes Digital Classrooms Across Port Huron and Michigan

  • Writer: Alison Rankin
    Alison Rankin
  • May 14
  • 2 min read

Alison Rankin | May 14, 2026




Image is AI generated.
Image is AI generated.

PORT HURON, MI — A massive cybersecurity breach targeting the Canvas learning management system forced school closures and pushed regional administrators into emergency response mode Friday morning, May 8, 2026.


The incident, which disrupted digital learning at institutions including Highpoint Virtual Academy and Michigan Great Lakes Virtual Academy, stems from a sophisticated extortion campaign allegedly carried out by the hacking group known as ShinyHunters.


Officials in the Blue Water Area and across the Thumb region reported that while some core systems are being restored, the breach exposed a significant amount of student and staff data, including full names, email addresses, student ID numbers, and private internal messages.


The disruption intensified Thursday when the Canvas login page for many Michigan students was reportedly replaced with a ransom note from the hackers, who claim to have stolen more than 275 million records from Instructure, the parent company of Canvas.


According to investigators, the group set a May 12 deadline for a settlement and threatened to leak billions of private messages exchanged between students and educators if demands are not met.


While Instructure and the University of Michigan stated there is currently no evidence that passwords, financial information, or government identifiers such as Social Security numbers were accessed, the exposure of student ID numbers and private communications has triggered significant privacy concerns for families throughout the Port Huron area.


In response to the escalating threat, several Michigan virtual academies canceled classes Friday and advised students to remain logged out of the platform while avoiding suspicious links or pop-up messages.


Investigators traced the suspected entry point of the breach to a tool known as “Free-for-Teacher,” which Instructure has temporarily shut down in an effort to prevent further unauthorized access.


Federal authorities, including the FBI and the Cybersecurity and Infrastructure Security Agency (CISA), are now assisting in the investigation as schools statewide work to secure their systems and protect student data before resuming normal operations.



Comments

Rated 0 out of 5 stars.
No ratings yet
Add a rating
Support Local News

Join the DRC Army for exclusive updates, local music leads, and deep-dive political analysis. Your voice matters in the Great Lakes.

NEWS BRIEFS

Have a story we should cover? Contact our newsroom directly: drcparmy@gmail.com

ed0e4ea0-188d-403b-bec3-98306b54b822.png
Tips or Leads

DRCN Archives Now on Substack
Stay connected to the stories that shaped Detroit Rock City News. Articles older than three months will now be archived exclusively on our Substack — giving readers a permanent home for in-depth reporting, investigations, features, and local stories that still matter long after the headlines fade. Subscribe today and never lose access to the stories behind the city.

bottom of page