Update on Recent Cyber Attacks
The attacks made use of usernames and passwords stolen in previous hacks involving non-governmental third parties to log into some GCKey accounts. The GCKey service itself was not compromised but in response, 9,300 GCKey credentials were revoked. Measures were then put in place to block subsequent attacks.
In addition to this, the CRA identified suspicious activities in July and August on approximately 48,500 CRA user accounts. Safeguards were then put in place and individuals affected were not held liable for fraudulent claims and payments made using their accounts.
Both Service Canada and CRA have implemented additional safety measures to protect account holders such as deactivating compromised accounts, temporarily suspending online services and adding additional security measures to the account sign-in process.
The RCMP has an ongoing investigation as well as the Office of the Privacy Commissioner. Account holders affected are being notified.
All affected departments have been contacting users whose accounts were affected or revoked. Canadians who have received a message that their GCKey credential was revoked can re-register for a new one through any of the online services they use.
The Federal Government reminds Canadians to remain vigilant and use different passwords for each online account. All affected individuals are encouraged to review their accounts for any suspicious activities. If you think you are a victim of fraud, you can contact local police or the Canadian Anti-Fraud Centre.