Search Here ….

Tags

affect AI AI slop AI STORIES alumni Blogging book care ChatGPT conferences cultural bias data analysis electronic literature ELMCIP ephemerality exhibition fascism Gephi history journalister lip-syncing LLMs machine vision network analysis norsk open access presentation publication publications R representation research science fiction self-representation selfies Snapchat social media Surveillance talks teaching trip report twitter UiB visualisation workshop
Networked Politics University politics

UiB self-hosts the open source version of Canvas, so wasn’t affected by the breach

JillPost a Comment
Top of a ransom note from Shinyhunters hacking group. Text reads: "SHINYHUNTERS rooting your systems since '19 ;) ShinyHunters has breached Instructure (again). Instead of contacting us to resolve it they ignored us and did some "security patches"."
The top of the ransom note SHINYHUNTERS left on the Canvas login page on 7 May 2026.

On May 1st Canvas announced a security breach, and then yesterday the system was hacked. The login page was replaced by a ransom note: if universities don’t pay up by 12 May, student data will be released. Here’s what the login page looked like yesterday:

Hacked Canvas login screen. https://en.wikipedia.org/wiki/File:ShinyHunters_Hacking_Message.png

Way back in 2015, when the University of Bergen switched to a new LMS, UiB’s IT director insisted we use the self-hosted version of Canvas instead of the subscription cloud version. Nobody was talking about digital sovereignty yet, but open source and open data were still seen as important, especially for the public sector. We were probably lucky that the switch was made before big tech convinced everyone that the cloud was the only solution. So the choice of switching to a self-hosted, open source version of Canvas was both pedagogical (based features in Canvas) and ideological. Here is an explanation of the process from back then, that explains that UiB has a strong IT division with a tradition of running and contributing to open source version platforms.

This week’s data breach of Canvas shows a big advantage of UiB’s approach: we’re not affected. Our student data is not being held hostage, and our system is working just fine. Student data is stored in UiB’s own datacentre.

But we’d decided to switch to the cloud version in 2026/2027! Oh no! Apparently the pilot for this, planned to start after the summer, is being put on hold until the current security breach is figured out and “the provider can guarantee security for our data.” I really hope this is reassessed not just due to this security breach (which is the second in less than a year), but the increasing need for digital sovereignty and autonomy.

The papers I have found so far about the transition from self-hosted to Canvas Cloud do not discuss digital sovereignty or security at all – the decision had already been made at this point. See sak 45/25 here.

I can’t find much information online about how UiB chose to run a self-hosted Canvas instead of using Canvas Cloud. I know about it because I was in meetings discussing it at the time. I also remember complaints because it didn’t have all the features that the subscription model had – but UiB also developed its own customised features, like a mobile app, which I think is no longer used.

Also, public insitutions should support and use and contribute to open source software. If you want to get off big tech for your personal software, I recommend my colleague Dom Ford’s series of blog posts on how to Exorcise Big Tech.

If you want to read more about the security breach, Wikipedia has a good overview, which Khrono writes is affecting 32 Norwegian universities and up to 250,000 students in Norway – and 7000 universities and schools worldwide. Maybe it’s not such a great idea to put all our eggs in one basket.

Discover more from Jill Walker Rettberg

Subscribe to get the latest posts sent to your email.

Leave A Comment

Recommended Posts

Screenshot of a paragraph from a New York Times article published May 12, 2026. Text reads: "The price of tomatoes -tart bursts of flavor in salads and sandwiches — surged nearly 40 percent in April from a year ago on a combination of bad weather, high tariffs and climbing transportation costs."
AI STORIES

Genre glitches and unexpected promotional phrases as a sign of AI writing

A genre glitch is a characteristic of LLM-assisted writing where the text suddenly switches genre, typically inserting a short promotional phrase full of sensory details into an informational text. Genre glitches occur when a word in the generated text is heavily associated with a genre or context that is markedly […]

Top of a ransom note from Shinyhunters hacking group. Text reads: "SHINYHUNTERS rooting your systems since '19 ;) ShinyHunters has breached Instructure (again). Instead of contacting us to resolve it they ignored us and did some "security patches"."
The top of the ransom note SHINYHUNTERS left on the Canvas login page on 7 May 2026.
Networked Politics University politics

UiB self-hosts the open source version of Canvas, so wasn’t affected by the breach

On May 1st Canvas announced a security breach, and then yesterday the system was hacked. The login page was replaced by a ransom note: if universities don’t pay up by 12 May, student data will be released. Here’s what the login page looked like yesterday: Way back in 2015, when […]

AI and algorithmic culture Networked Politics

AI-generated images, fascist aesthetics: Dieselbrølet and Heimatstrom

My German is pretty dodgy, so when I first saw Heimatstrom on Bluesky, shared by Roland Meyer, a professor of visual culture at Universität Zürich’s Digital Society Initiative, I misinterpreted it and thought it was a far-right campaign. But no, Heimatstrom is a group of left-wing environmentalists using fascist AI […]

Photo of a billboard ad at Oslo S train station showing a smiliing conductor and the text "Du må ikke sove. Joda, bare sov du."
AI STORIES

“Du må ikke sove”: a floating motif detached from its meaning (or: LLMs can write Norwegian but miss cultural references)

There’s a new ad for the train between Stavanger and Oslo in Norway that uses a line from Arnulf Øverland’s famous anti-fascist poem Du må ikke sove (“You must not sleep”). Du må ikke sove, you must not sleep, the ad says. And then it flips it, jovially, joda, bare […]

AI and algorithmic culture University politics

Academics in Norway: Sign this petition asking for research-based discussions of how to use AI in universities

I just signed a petition calling for Norwegian universities to use research expertise on AI when deciding how to implement it, rather than having decisions be made mostly administratively. ,  If you are a researcher in Norway, please read it and sign it if you agree – and share with anyone else who might be interested. The petition was written by three researchers at UiT: Maria Danielsen (a philosopher who completed her PhD in 2025 on AI and ethics, including discussions of art and working life), Knut Ørke (Norwegian as a second language), and Holger Pötzsch (a professor of media studies with many years of research on digital media, video games, disruption, and working life, among other topics).  This is not about preventing researchers from exploring AI methods in their research. It is about not uncritically accepting the hype that everyone must use AI everywhere without critical reflection. It is about not introducing Copilot as the default option in word processors, or training PhD candidates to believe they will fall behind if they do not use AI when writing articles, without proper academic discussion. Changes like these should be knowledge-based and discussed academically, not merely decided administratively, because they alter the epistemological foundations of research. Maria wrote to me a couple of months ago because she had read my opinion piece in Aftenposten in which I called for a strong brake on the use of language models in knowledge work. She was part of a committee tasked with developing UiT’s AI strategy and was concerned because there was so much hype and so few members of the committee with actual expertise in AI. I fully support the petition. There are probably some good uses for AI in research, but the uncritical, hype-driven insistence that we must simply adopt it everywhere is highly risky. There are many researchers in Norway with strong expertise in AI, language, ethics, working life, and culture. We must make use of this expertise. This is also partly about respect for research in the humanities, social sciences, psychology, and law. Introducing AI at universities and university colleges is not merely a technical issue, and perhaps not even primarily a technical one. It concerns much more: philosophy of science, methodological reflection, epistemology, writing, publishing, the working environment, and more. […]

screenshot of Grammarly - main text in the middle, names of experts on the left with reccomendations and on the right more info about the expert review feature
AI and algorithmic culture Teaching

Grammarly generated fake expert reviews “by” real scholars

Grammarly is a full on AI plagiarism machine now, generating text, citations (often irrelevant), “humanizing” the text to avoid AI checkers and so on. If you’re an author or scholar, they also have been impersonating and offering “feedback” in your name. Until yesterday, when they discontinued the Expert Review feature due to a class action lawsuit. Here are screenshots of how it worked.