Dear Parents, Guardians, and Staff,
We are writing to inform you of a recent cybersecurity incident involving Instructure, the company that provides our Canvas learning management system. On May 2, 2026, Instructure confirmed that an unauthorized third party (the "ShinyHunters" group) gained access to certain user data within their systems.
What We Know Currently:
Instructure has reported that the stolen data includes names, email addresses, and student ID numbers. They have also indicated that some private messages sent within the platform were accessed.
What Is NOT Impacted:
At this time, Instructure states there is no evidence that passwords, Social Security numbers, dates of birth, or any financial information were involved in this breach.
Is Mid-Del Public Schools Impacted?
We have received confirmation that our students' data was compromised, and we are notifying you now in compliance with Oklahoma’s student data privacy standards
What You Should Do:
While no passwords were stolen, cybercriminals often use names and emails from these types of leaks to send "phishing" emails. Please be extra vigilant:
Verify Emails: Be cautious of any email asking you to click a link or provide a password, even if it looks like it is coming from the school or Canvas.
Monitor Accounts: If you or your student uses the same password for Canvas as you do for other personal accounts (like banking or social media), we strongly recommend changing those passwords as a general best practice.
Our Next Steps:
Our Department of Technology is currently reviewing our security measures and following all security protocols provided by the vendor. We will provide a follow-up communication as soon as their investigation confirms the specific status of our district's data.
Please visit the following page for any changes to the status at https://docs.google.com/document/d/1zYKYjKzVZ6c46RSWNR5xbolBWxl05PkeA4yshqkk_PU/edit?usp=sharing
Monitor Instructure's official channels for updates as the investigation progresses:
Status Page: https://status.instructure.com/
Link to the Mid-Del website for the latest information: /o/district/page/instructure-data-breach