The Department of Education has reactivated access to Canvas learning platforms following a global cyber incident in May 2026 that impacted Instructure, a third-party supplier, and its Canvas system.
Users will be prompted to reset their password. All users should be alert to phishing scams and only access Canvas via the official app or a direct URL. Users accessing Canvas with their personal email address are strongly encouraged to activate multi-factor authentication (MFA) on their personal email accounts. MFA reduces the likelihood of someone gaining unauthorised access to your account using information harvested through criminal activities.
If you have any privacy or security concerns, you can find useful information on the Office of the Victorian Information Commissioner website.
For privacy complaints please contact privacy@instructure.com
