Posting links in Canvas has not quality control vis-a-vis cybersecurity. The addition of a tool or service that scans all posted hyperlinks to check for malicious action would safeguard faculty and students from possibly spreading and compromising a tenant/domain/school. The assumption of safety in Canvas does not correspond to the reality. The real life scenario: a teacher today posted a link in their course - students opened the link and malware was deployed. Now we are pulling all student devices to clean them.

Microsoft ATP has Safelinks - maybe something like this through a tool? The hyperlink would then be altered and a "safe link" placed in its stead. When a user selects the link it gets processed and blocked if its route passes through or ends in a malicious location. Or when a teacher pastes a link, the link is scanned and a result of the processing can either post the link or deny it.

admin