Resource Center
Resource Center
Expert Insights and Tools for Fortifying Your Cyber Defense
Elevate your cybersecurity expertise and strengthen the security posture of your organization with expert guidance, industry best practices, and research insights from Enterprotect.
Nunavut Government Services Impacted By Ransomware
The Government of Nunavut is the latest victim in a string of similar ransomware attacks that seems to be targeting North American governments. The Nunavut government has been unable to provide standard services after the ransomware attack crippled their IT network. According to reports, the comprehensive attack has disabled medical services, family and educational offerings, the local finance department and the territory’s legal system.
Over $400K Siphoned In Not-For-Profit System Hack
By isolating a flaw in their network security, hackers were able to access Pipestone Kin-ability Centre’s financial system and steal more than $400,000 in funds. The Not-for-Profit company had reserved the funds for wages and general operations. Administrators were able to quickly spot the unauthorized activity, but their attempts at stopping it were futile and have resulted in a significant blow to their budget.
Canada’s New Breach Reporting Law: 1 Year Later
In November of 2018, a new Canadian Privacy Law was created requiring Canadian businesses to report data breaches to the Office of the Privacy Commissioner (OPC).
3rd Party Data Breach Affects Ontario Science Centre
The Ontario Science Centre has warned newsletter subscribers of a data breach that occurred after an employee of a third-party contractor was able to access and download personal data without authorization. An undisclosed number of subscribers and camp/birthday party participants were all potentially impacted by the breach.
37,000 Potentially Affected By TransUnion Data Breach
Hackers used compromised user credentials to access 37,000 TransUnion customer’s personal information. The breach raises concern to the company’s current cyber security posture as the breach occurred roughly between June-July 2019 but was not detected by the company until August. TransUnion’s brand reputation and public image is sure to take a hit as customers may or may not be affected by their lack of ability to safeguard their client’s information.
Hacked Email Provides Access To Airline’s Sensitive Data
Federal authorities are working with PAL Airlines to identify the exact cause and scope of a data breach that provided hackers with access to customers’ sensitive information. After a single employee email account was successfully hacked, the airline is now left with contacting their customers to ensure they take next steps in protecting themselves after their negligent cyber security measures failed to safeguard personal data.
NBA Canada Suffers Massive Data Breach
An unauthorized user accessed a server managed by the NBA for its Canadian business efforts. The league quickly identified the intrusion and took the server offline, began an investigation, and hired cyber security experts to make further recommendations.
Ontario Hospital Network Faces Increasing Downtime Costs After Ransomware
The Listowel Wingham Hospital Alliance, which is comprised of two hospitals, was struck by a ransomware attack that significantly curtailed their treatment capabilities. Although the emergency rooms remain open, less urgent patients are enduring long waits or are being transferred to other facilities
Nearly 5 Million DoorDash Users Impacted After Server Hack
After waiting nearly one month, food delivery company, Door Dash, announced that they experienced a data breach that could affect nearly 5 million people. Hackers were able to gain access to DoorDash’s server where data on drivers and users was stored.
Scotiabank's Major Security Breach: 25 Million Scotiabank Customers’ Data Left Exposed
In what experts are calling an avoidable situation, Canadian financial institution, Scotiabank, accidentally left open its GitHub repositories (software hosting), exposing software blueprints, access keys to foreign exchange rate systems, mobile application codes, and login credentials for company databases.
Yves Rocher Data Leak Impacts 2.5 Million Canadians
Globally operated cosmetics company, Yves Rocher, experienced a large scale data leak after an unprotected database exposed the personal information of millions of Canadian customers. Included in the data was company insights, future promotions, customer information and other valuable data that could all be used against the company by competitors and even bad actors. The compromised data also included employee credentials from a previous data breach where information could be modified or deleted. f
Canadian Government Approves Cyber Security Certification for SMBs
The Canadian Federal Government recently launched a highly-anticipated program impacting small to medium-sized businesses and their current cyber posture.
$7-$10K Ransom Request Refused by Municipal Ontario Government
On June 30th, hackers exploited a network vulnerability to access the government’s system infecting it with ransomware that cut off access to vital services. While many services were restored within days, government employees still cannot access their email accounts. Officials are refusing to pay the $7,000 to $10,000 ransom payment, and they are attempting to restore services using other measures
Well Prepared Boyd Group Hit By Ransomware Attack
An internal notification system detected a ransomware attack on June 27th, causing the company to shut down some of its services. Many of the company’s offices were able to continue operations uninterrupted, however, some locations were temporarily disabled, causing them to lose sales during that period. Fortunately, the company previously established a ransomware response policy that dictated immediate actions and prevented the malware from spreading further into their network.
Former Credit Union Employee Creates Data Breach Affecting 2.9 Million Customers
A former employee of the financial group, Desjardins, made off with personal data from millions of customers by accessing the company’s network. The breach entailed a significant amount of personally identifiable information that will surely impact both personal and business customers.
BEC Phishing Scam Tricks City into Transferring $530K
A recent email phishing attack was deployed against the City of Burlington, where hackers were able to successfully trick staff members into thinking that they were dealing with established city vendors. By not cluing in on time, the city sent $503,000 to a falsified bank account. The government is now working on updating and implementing new protocols to prevent incidents like this from happening in the future.
2,841 Patients Impacted by Phishing Attack
Hackers were able to gain access to thousands of patients’ information stored on an employee’s email account. The employee was tricked into submitting his credentials to the hackers via an email that was originally thought to be from the company’s IT department. Nova Scotia Health Authority took nearly a month to size up the details of the data that was compromised and still cannot verify the specific data exposure.
Ransomware 101: Understanding the Growing Threat
Ransomware: a highly intrusive form of malware that essentially invades a victim's files and locks the user out by encrypting their system or files. As the name suggests, the attacker then demands a ransom from the victim in order to unlock the files and restore access.
Thousands Impacted By Freedom Mobile Server Leak
Thousands of Freedom Mobile customers had their personal information compromised in an unencrypted database. Security researchers found that the database was without a password and written in plain text. Information included: customers’ email addresses, phone numbers, home addresses, dates of birth, account numbers and IP addresses. Financial information was also found on the server, including: credit card numbers, security codes and credit scores.
I Fell For a Phishing Attack: Now What?!
Since April of 2018, Canada has experienced a drastic uptick in phishing volume, +170% (Phishlabs:2019 phishing trends and intelligent report). Ranking as the 2nd largest increase in volume globally, Canadian SMBs need to understand the depth of sophistication that attackers are using in order to EDUCATE and train employees.