breach

Thursday August 1, 2019

August 1, 2019

Editorial Cartoon by Graeme MacKay, The Hamilton Spectator – Thursday August 1, 2019

Another day, another data hack — and truth is, there’s not much you can do about it

When news emerged on Monday evening that Capital One, one of the biggest issuers of credit cards in the world, had been breached in a major data hack where the personal information of more than 100 million people was stolen, reaction from consumers was swift and almost unanimous: another one?

March 21, 2018

That’s because the hack — in which a former Amazon Web Services employee broke into Capital One’s servers and stole information on up 106 million people, including 140,000 Social Security numbers in the U.S., and 1 million Social Insurance Numbers in Canada — is just the latest in a long run of hacks, each seemingly bigger than the last.

U.S. retailer Target was among the first to be hit in a major way, as the chain revealed in 2013 that credit card data for 70 million of its customers was stolen. Next was do-it-yourself hardware chain Home Depot the following year, where 57 million people were affected.

Hotel chain Marriott was next in the hit parade, in a multi-year breach that dated back to 2014 when hackers exploited a flaw in their cybersecurity to steal credit card details and other data on half a billion customers.

But the biggest one to date was Yahoo’s. The online company admitted in 2017 that an astonishing three billion people had their Yahoo emails breached by online fraudsters.

October 11, 2018

That same year, credit monitoring firm Equifax revealed that it had been hit, as 143 million people had their information stolen.

For many people, the Equifax breach was emblematic of just how widespread the problem of data theft is, because the information was stolen from a credit reporting agency that also offers credit-monitoring services itself.

This week’s Capital One hack is just yet another reminder of what cybersecurity experts have known for a while:  you’ve probably already had your information stolen, and the only question is whether you know it.

“Assume your data is out there because in all likelihood it is,” is how cybersecurity journalist Brian Krebs puts it.

In and of themselves, none of the major breaches may have been enough for a fraudster to “steal” someone’s entire identity, nor do they mean that the hundreds of millions of victims can expect to have major headaches to worry about for the rest of their lives. (CBC

 

Wednesday May 23, 2018

Editorial Cartoon by Graeme MacKay, The Hamilton Spectator – Wednesday May 23, 2018

York police probe Highway 407 data breach that led PC candidate to quit

York Regional Police’s fraud unit is investigating the “internal theft” of customer data from 407 ETR, the company that oversees Highway 407, CBC News has learned.

September 21, 2017

On Wednesday, the former Progressive Conservative candidate in Brampton East, Simmer Sandhu, resigned over allegations of his involvement in the data breach. Sandhu called the allegations “totally baseless” and said he would work to clear his name.

His resignation came hours after 407 ETR announced it was informing some 60,000 customers that their names, mailing addresses and in some cases their phone numbers were stolen from the company’s office in the past year.

Sandhu worked at the company for nine years, until he left about two months ago.

December 18, 2015

A spokesperson for York police said the investigation is in its earliest stages and few details were immediately available on Friday. The

spokesperson did not say whether or not the investigation will include allegations of links between the data breach and Sandhu.

Liberal Leader Kathleen Wynne and NDP Leader Andrea Horwath both called for police to probe the circumstances of the stolen data while campaigning this week.

On the campaign trail Friday, Ford told reporters that police had not contacted him nor his campaign team to discuss the stolen data.

He then reiterated the Tories parted ways with Sandu “as soon we found out about it.”

Ford added that, to his knowledge, no other candidates or ridings have been linked in any way to the data breach. (Source: CBC

 

Thursday July 19, 2012

By Graeme MacKay, The Hamilton Spectator, Thursday July 19, 2012

Ontario voters warned of huge privacy breach

The personal information of up to 2.4 million Ontarians has been compromised by the disappearance of two memory sticks from an Elections Ontario office in Scarborough.

The information, which includes names, addresses, genders and dates of birth, was not supposed to be stored on unencrypted and non-password protected memory sticks by Elections Ontario staff, the province’s chief electoral officer, Greg Essensa, said Tuesday. The portable storages devices also should have been locked up when not in use. Yet, none of these security protocols were followed, he said as he apologized to the people of Ontario.

“I take this matter extremely seriously and I sincerely apologize to all Ontarians for the worry that this may cause them.”

The security breach, now under investigation by the Ontario Provincial Police, began, in one sense, with the results of the provincial election last fall. The instability of a minority government, according to an initial report on the breach by law firm Gowling Lafleur Henderson, meant that Elections Ontario had to be ready to conduct another election on short notice.

The agency’s headquarters in Scarborough, however, did not have enough room to store both the materials for a future election and the materials that had been returned from the election just conducted. That’s why the agency was forced to lease additional space, also in Scarborough — and it was at that temporary location where the security breach took place, on or near April 26 of this year, the report said (Source: Ottawa Citizen)