Dear BVPS families and employees:
We want to provide you with an update regarding the cybersecurity incident involving Instructure Inc., the parent company of Canvas. Canvas has notified public school systems and universities across the country of a widespread cybersecurity event. BVPS, like many institutions, uses this educational administration software.
This situation is limited to Canvas systems and has not impacted our division’s internal IT systems. Canvas has indicated that it has fixed the issue and restored access. It also claims that it has negotiated with the criminal actors and received assurance that the data will not be shared on the dark web or elsewhere. You can view their website for up-to-date information regarding the incident:
https://www.instructure.com/incident_update
Instructure has informed us that it has taken steps to secure the Canvas platform, engaged third-party cybersecurity experts to conduct an investigation, and is working closely with law enforcement. Because the investigation is being conducted by Canvas, they are managing all aspects of that process, and we are not directly involved in the full scope of their investigation at this time. Canvas is used as an educational platform, and any information about your student would be limited to basic account information, such as their name, email address, student ID, and coursework-related information.
BVPS takes the privacy of our students’ and staff information very seriously. We are working to ensure that Canvas directly notifies those individuals impacted by the details of any information involved. Thank you for your patience as we continue to work through this matter. We are committed to keeping you informed.
Sincerely,
David D. Scott
Superintendent