Security News > 2021 > May > Canada Post hit by data breach after supplier ransomware attack
Canada Post has informed 44 of its large commercial customers that a ransomware attack on a third-party service provider exposed shipping information for their customers.
Yesterday, Canada Post disclosed that a third-party supplier named Commport Communications suffered a ransomware attack where threat actors accessed data stored in their systems.
In total, the breach affected 44 Canada Post commercial customers and 950,000 receiving customers.
In December 2020, a ransomware operation known as Lorenz posted on their data leak site that they had breached Commport Communications during a ransomware attack.
While Canada Post states that at the time of the attack, Commport did not believe that any of their data was accessed, based on the leaked data, it appears that this was not the case.
Canada Post states that they have hired external cyber security experts to assist in the investigation and have notified the Office of the Privacy Commissioner of Canada.
News URL
Related news
- Texas State Bar warns of data breach after INC ransomware claims attack (source)
- Food giant WK Kellogg discloses data breach linked to Clop ransomware (source)
- Hertz data breach: Customers in US, EU, UK, Australia and Canada affected (source)
- Marks & Spencer breach linked to Scattered Spider ransomware attack (source)
- PowerSchool previously hacked in August, months before data breach (source)
- Live Ransomware Demo: See How Hackers Breach Networks and Demand a Ransom (source)
- Ransomware gang creates tool to automate VPN brute-force attacks (source)
- SANS Institute Warns of Novel Cloud-Native Ransomware Attacks (source)
- ⚡ THN Weekly Recap: Router Hacks, PyPI Attacks, New Ransomware Decryptor, and More (source)
- BlackLock ransomware claims nearly 50 attacks in two months (source)