Security News > 2021 > May > Canada Post hit by data breach after supplier ransomware attack
Canada Post has informed 44 of its large commercial customers that a ransomware attack on a third-party service provider exposed shipping information for their customers.
Yesterday, Canada Post disclosed that a third-party supplier named Commport Communications suffered a ransomware attack where threat actors accessed data stored in their systems.
In total, the breach affected 44 Canada Post commercial customers and 950,000 receiving customers.
In December 2020, a ransomware operation known as Lorenz posted on their data leak site that they had breached Commport Communications during a ransomware attack.
While Canada Post states that at the time of the attack, Commport did not believe that any of their data was accessed, based on the leaked data, it appears that this was not the case.
Canada Post states that they have hired external cyber security experts to assist in the investigation and have notified the Office of the Privacy Commissioner of Canada.
News URL
Related news
- Texas State Bar warns of data breach after INC ransomware claims attack (source)
- HPE notifies employees of data breach after Russian Office 365 hack (source)
- US indicts 8Base ransomware operators for Phobos encryption attacks (source)
- Sarcoma ransomware claims breach at giant PCB maker Unimicron (source)
- RA World Ransomware Attack in South Asia Links to Chinese Espionage Toolset (source)
- Chinese espionage tools deployed in RA World ransomware attack (source)
- Lee Enterprises newspaper disruptions caused by ransomware attack (source)
- Fintech giant Finastra notifies victims of October data breach (source)
- US drug testing firm says data breach impacted 3.3 million people (source)
- US drug testing firm DISA says data breach impacts 3.3 million people (source)