Resource Center
Resource Center
Expert Insights and Tools for Fortifying Your Cyber Defense
Elevate your cybersecurity expertise and strengthen the security posture of your organization with expert guidance, industry best practices, and research insights from Enterprotect.
Desjardins Class Action Lawsuit Over 2019 Breach Settles For $200M
A settlement in a class-action lawsuit related to a 2019 data breach will see the Desjardins Group pay up to nearly $201 million. Eligible individuals affected by the breach are expected to receive a portion of the payment.
3.1 Million Users’ Email Addresses Leaked In Data Breach
CoinMarketCap, a crypto price tracking website, was hit with a data leak that saw 3.1 million user email addresses being leaked onto the dark web. After the leak was first reported by Have I Been Pwned, CoinMarketCap initially denied the hacking incident occurred. The company soon after admitted to the data leak as “batches of data have shown up online purporting to be a list of user accounts.”
7 Million Users Affected In Robinhood Data Breach
An investigation is underway after a successful vishing (voice phishing) attack was used to penetrate the customer support system for financial services platform Robinhood. After infiltrating the company’s system, threat actors gained access to a customer list exposing varying degrees of PII for an estimated total of seven million users.
Hackers Steal Cryptocurrency from 6,000 Coinbase Users
6,000 users of the cryptocurrency exchange Coinbase had their accounts compromised after a fault was exploited in the company’s implementation of SMS-based authentication.
Fintech Customer Accounts Locked After Credential Stuffing Attack
Customers of the financial services platform MoneyLion were recently targeted by a credential stuffing attack. Affected users of the mobile banking and investing app were informed their accounts were locked after “an unauthorized outside party appears to have been attempting to gain access to (their) account on the applications.”
Ransomware Attack Hits Community Bank
Last week, the California-based Pacific City Bank was hit by a ransomware attack. The AVOS Locker ransomware gang is claiming to have stolen sensitive documents from the financial institution as screenshots and a ZIP archive were recently added to gang’s leak site.
600,000 Patients Warned After Medical Group Discovers Data Breach
Over 600,000 patients of the DuPage Medical Group are being notified that a cyber attack in July may have compromised their personal information. Investigations have determined that phone and computer outages lasting nearly a week in mid-July was caused by unauthorized access to the medical group’s network.
Thousands Affected By CRA Data Breach
The Canada Revenue Agency has temporarily shut down online services after a data breach involving two cyber attacks compromised thousands of accounts linked to their services. In a recent statement, the CRA noted that at least 5,500 accounts have been affected by the two incidents.
329,000 Affected By CPA Canada Phishing Attack
After falling victim to a successful phishing attack in April, CPA Canada has disclosed that personal information of their members and users of their website has been compromised. After concluding the initial investigation, the organization has determined that following the attack unauthorized third parties gained access to the website and compromised personal information of over 329,000 members. Those affected by the breach were primarily CPA Canada magazine subscribers and website users.
2 Year Phishing Campaign Targeting Major Canadian Banks Uncovered
An intricate, two year phishing campaign with the intention of targeting 14 major Canadian banks’ customers, including many from TD Canada Trust, CIBC, Scotiabank and RBC, has recently been exposed. The extensive phishing scam targeted the banks’ customers with emails containing authentic looking PDF attachments, bank logos and authorization codes.
Financial Company Sees 245 Computers Encrypted with Ransomware
Andrew Agencies, a Manitoba based insurance company, was hit with a ransomware attack that encrypted 245 of the company’s computers. The hackers threatened to expose stolen data if a ransom wasn’t paid, however, deadlines have been pushed back as Andrew Agencies has been refusing to pay since the discovery of the attack in October. Thus far, no data has been compromised or exposed but 876 customers could be impacted.
37,000 Potentially Affected By TransUnion Data Breach
Hackers used compromised user credentials to access 37,000 TransUnion customer’s personal information. The breach raises concern to the company’s current cyber security posture as the breach occurred roughly between June-July 2019 but was not detected by the company until August. TransUnion’s brand reputation and public image is sure to take a hit as customers may or may not be affected by their lack of ability to safeguard their client’s information.
Scotiabank's Major Security Breach: 25 Million Scotiabank Customers’ Data Left Exposed
In what experts are calling an avoidable situation, Canadian financial institution, Scotiabank, accidentally left open its GitHub repositories (software hosting), exposing software blueprints, access keys to foreign exchange rate systems, mobile application codes, and login credentials for company databases.
Former Credit Union Employee Creates Data Breach Affecting 2.9 Million Customers
A former employee of the financial group, Desjardins, made off with personal data from millions of customers by accessing the company’s network. The breach entailed a significant amount of personally identifiable information that will surely impact both personal and business customers.
$100’s of Thousands Stolen as Coast Capital Members Targeted In Phishing Ring
A ring of phishing scams targeted banking customers at Coast Capital Savings. A reported 140 members had thousands of dollars stolen from their accounts in the attacks that spanned from November to December of last year. On average victims lost $3,000-$6,000 with the total figure in the hundreds of thousands of dollars range. Public concerns have risen as the financial institution is unsure of how the funds were accessed or even if victims will be reimbursed.