CPA Canada Hit By Cyber-Attack, 329,000 Accounts Affected
The CPA (Chartered Professional Accountants) of Canada informs about a cyber-attack on its website. They discovered an unauthorized access by third-party that attempt to access personal information. The attacker has managed to affect personal data of more than 329,000 members and stakeholders.
Unfortunately, data including names, addresses, emails of employers were stolen.
However, the association mentions that passwords and credit card information are safe, as they were encrypted.
The experts believe that such information in the hand of hackers can be problematic. As they can initiate email phishing scams and similar attacks on the victims. So, they have suggest the members and stakeholders to stay vigilant and take extra precautions while opening a link or an email.
Security Features Beefed And Stakeholders Were Informed
The CPA association of Canada have issued a press release. To inform the members and stakeholders about the cyber-attack between 30th November 2019 and 1st May 2020.
After finding about the attack, the organization contacted the Canadian Anti-Fraud Center and Privacy Authorities in April 2020.
Since then, they have took steps to remove any malicious code from their servers and increased security measures. The group said that CPA Canada took every necessary step to secure the systems. They took support from the experts to analyze what information may have been compromised.
Additionally, the experts said that there is no evidence to indicate that the encryption keys were affected in the incident. Thus, there is no reason to believe that the encryption is compromised.
Also, the personal information stolen, had the details of subscribers of CPA Magazine. The organization has informed all the members and stakeholders who got affected due to the attack.
Hackers Targets Organizations Widely
Since 2018, hackers are working against a wide range of companies. They have attacked numerous companies from different sectors, including medical test laboratory LifeLabs and credit union Desjardins. Only in these two attacks around 19 million Canadians were affected.
As of now, the stolen information has not appeared anywhere on the dark web. The experts believe that the data dump may help hackers exploit the stakeholders that are not well versed in the world of the internet. Thus, it is essential to take additional precautions while accessing emails.
What should you do?
In the case of such attacks, if you are one of the victims, there are several steps that you can take to ensure your safety and security.
- Though the organizations said that the passwords were not compromised. But it is always better to change the passwords. Make sure to keep the password secure that should not contain any of your personal details such as date of birth or anniversary.
- Enable two-factor authentication for your applications.
- Make sure to install antivirus/anti spyware program. Prefer not to look for cheap alternatives.
- Switch on email scanning in the antivirus or anti-spyware applications. Also, install an antivirus on your smartphone.
- If you get an email from your bank or an unknown mail ID, please do not click on any link. If it is asking you to log in to your bank account and make some changes, prefer to use the bank’s website to login.
Protect your computer with HitmanPro Now
Although, it is very important to enable 2FA on your accounts, and use strong passwords. But to keep the passwords secure you should use a reputable Password Manager tool like Dashlane(Review).
To secure Your Digital Wallets download DashLane Password Manager Now.