Notice of Cybersecurity Incident from Vendor used by Salem-Keizer Public Schools

This is an important notice regarding a cybersecurity incident involving a vendor used by Salem-Keizer Public Schools.

Instructure, the company that provides our Canvas learning management system, has notified us that they recently experienced a cybersecurity incident that may affect school districts. Canvas is used by our students in grades 6-12 as well as by students in the EDGE online program.

Information & Investigation

The company is still investigating the cybersecurity incident and its extent. As a district, our own network and systems were not involved.

We don’t yet have confirmation that any data from SKPS was accessed in Instructure’s system.

Through our own internal investigations, we determined that, should any information about SKPS students or staff have been accessed through this cybersecurity incident, the information would have been limited to:

• Student/staff Name (first, middle, last)
• Student/staff Email Address
• Student/staff ID
• Phone number
• Grade
• School Enrollments

Instructure indicates that they have not found any evidence that passwords, dates of birth or other sensitive information were involved. It is not possible to access SKPS passwords through Canvas, as SKPS students and staff connect to Canvas via a secure single sign-on system.

Next Steps

Instructure reports that it has taken steps to secure its systems and believes the incident has been contained.

Students and families do not need to take any action at this time. We are actively monitoring this issue and will share an update should any further action be required by SKPS students and/or families.