May 8, 2026
Access to bCourses has been restored. Please be aware that you may experience intermittent performance as the bCourses platform stabilizes. Please refer to the RTL News page for more information.
If you encounter any further issues with Canvas or receive any suspicious messages, as always, contact us at security@berkeley.edu.
May 7, 2026
Instructure, the maker of Berkeley's learning management system Canvas, has notified the University of California of a data breach involving Instructure’s systems. This is a nationwide issue affecting thousands of institutions. The University of California Office of the President (UCOP) is in close communication with Instructure and is actively coordinating with the Information Security Office to monitor the situation.
For Updates:
- Research, Teaching, and Learning is providing updates for the Berkeley community.
- UCOP is providing updates for the system
- Instructure is providing status updates on its website
Instructure reported that outside actors accessed some information from their systems, but they no longer have access. The information that may have been involved includes names, email addresses, student ID numbers, and messages exchanged in Canvas/bCourses. There is no evidence that passwords, birthdates, government IDs, or financial information were compromised, but this may change as the investigation progresses.
As with any security incident, be cautious of phishing attempts. Watch for unexpected messages that seem to come from UC Berkeley. The university will never ask for passwords, Social Security numbers, birthdates, or bank account information through email, text, or phone calls.