A cyberattack targeting professional service websites hosted by the Health Employers Association of British Columbia (HEABC) has resulted in the exposure of Canadian healthcare worker data. According to reports, the attack was detected on July 13 and potentially affected the personal data of hundreds of thousands of healthcare workers in the Canadian province of British Columbia. HEABC represents two hundred public health sector employers.
HEABC president and CEO Michael McMillan confirmed that the exposed data includes personal email addresses, birthdates, social insurance numbers, passport information, driver’s licenses, educational credentials, investigative reports, and other information related to individual dealings with relevant programs. Fortunately, no patient records were impacted, and the compromised server was immediately shut down. The exposed data has been moved to a more secure location.
Expressing regret over the incident, McMillan reassured everyone that the organization is working with cybersecurity and privacy experts to address the attack, enhance security measures, and support individuals whose personal information may have been involved. An investigation is currently underway, albeit the exact number of affected individuals remains unclear. As a precautionary measure, the impacted programs’ public-facing websites have been temporarily shut down. However, operations will continue as usual.
In a separate incident, Voyager Digital, a crypto firm that went bankrupt last year, reopened its platform for a thirty-day period to allow customers to recover their lost funds. However, it has been disclosed that hackers took advantage of this opportunity and stole user data while customers were in the process of reclaiming over $491 million from the platform. Voyager’s lawyers have been notified of several scams and phishing attempts targeting customers, indicating a potential data breach.
According to reports, scammers used customer names, contact information, and claim amounts in their fraudulent communications. They enticed former Voyager customers with the promise of higher payouts on fake trading platforms. Once a target handed over their personal information, the cybercriminals would steal their funds. Law enforcement agencies and cybersecurity experts have been enlisted to investigate this potential breach.
The incidents highlight the persisting threat of cyberattacks and emphasize the need for robust cybersecurity measures across industries. Healthcare organizations and crypto firms, in particular, handle sensitive personal and financial information, making them attractive targets for cybercriminals. It is crucial for such entities to regularly assess their security measures, invest in advanced technologies, and collaborate with cybersecurity experts to prevent and mitigate the risks posed by cyber threats.
As the investigations into these incidents continue, affected individuals should remain vigilant and take necessary precautions to protect their personal information. This includes monitoring financial accounts for any suspicious activity, being cautious of unsolicited communications, enhancing the security of online accounts through strong passwords and multi-factor authentication, and promptly reporting any potential fraudulent activity to the appropriate authorities.
Overall, these incidents serve as reminders for organizations to prioritize cybersecurity and for individuals to be proactive in safeguarding their personal information in an increasingly digital world.