Security News > 2021 > January > TransLink confirms ransomware data theft, still restoring systems
Metro Vancouver's transportation agency TransLink has confirmed that the Egregor ransomware operators who breached its network at the beginning of December 2020 also accessed and potentially stole employees' banking and social security information.
TransLink announced on December 1, 2020, that the transportation network was experiencing issues with their computing systems following a cyberattack.
"We are now in a position to confirm that TransLink was the target of a ransomware attack on some of our IT infrastructure," TransLink disclosed in a statement following the incident.
Although immediately after the attack was discovered TransLink representatives said that "There is no cause for concern that personal data has been compromised" when it comes to customers' information, it looks like this is not the case for employees.
"Importantly, as we outlined previously, TransLink does not store or have access to Compass customer fare payment information," Translink spokesperson Ben Murphy told Global News Wednesday.
At the moment, most of TransLink's systems are still down after the ransomware attack - including real-time GPS data, tracking, and reporting systems - with company technicians working to restore them as soon as possible.