Canvas cyber incident involving TasTAFE data
Published on: 06 May 2026
On 2 May 2026, Instructure reported a cyber security incident affecting its Canvas Learning Management System, which is used globally by education providers.
TasTAFE uses Canvas as its learning management system to deliver, manage and support learning for students and staff.
Instructure took immediate action to address the incident and has engaged external cyber security and forensic specialists.
On 6 May, Instructure advised that a criminal third party has accessed data associated with some customer accounts, including TasTAFE.
This incident relates to Instructure’s systems and was not the result of a breach of TasTAFE’s own systems or processes.
Investigations commenced immediately and are ongoing. Based on current advice, the data involved may include some personal information, including content stored within Canvas such as messages.
At this stage, Instructure has not provided TasTAFE with information identifying specific individuals affected.
There is no indication that passwords, dates of birth, government identifiers, or financial information were involved.
Canvas remains online and operational, and there is no impact to ongoing TasTAFE learning delivery at this time.
TasTAFE is working closely with Instructure and relevant authorities and will continue to monitor the situation and provide updates as further information becomes available.
Further information can be found at Canvas Cyber Security Incident | TasTAFE
