Nova Scotia estimates up to 100,000 people affected by online security breach
As many as 100,000 Nova Scotians may have had sensitive personal information stolen in a global privacy breach affecting a file transfer system used by the provincial government, officials confirmed Tuesday.
Cybersecurity and Digital Solutions Minister Colton LeBlanc said a government investigation indicates social insurance numbers, addresses and banking information of current employees of the public service, as well as those at Nova Scotia Health and the IWK hospital, were taken.
LeBlanc says some information may also have been stolen from former public service and health authority employees. He said the information was shared through the MOVEit file transfer service, which the province uses to transfer employee payroll information.
"The investigation remains underway so there is the potential for this number to go up or to go down," the minister said. "I know this is an alarming situation, but rest assured we are working hard to solve this quickly and efficiently."
LeBlanc said the province is working to contact those affected and will be offering them a free credit monitoring service. "But when we are talking 100,000 Nova Scotians, that's going to be a challenge," added LeBlanc, who pointed out some people's contact information may have changed over the years. He also urged current and former employees to look for suspicious transactions and to contact their banks.
The department's deputy minister, Natasha Clarke, said that at this point there is no indication that any of the information compromised came from members of the public who were not provincial employees.
MOVEit software is made by Massachusetts-based company Ipswitch and allows organizations to transfer files and data between employees, departments and customers. Parent company Progress Software confirmed a vulnerability in its software last week, saying the issue could lead to potential unauthorized access of users' systems and files.
The Nova Scotia government has said it was first informed of a critical vulnerability within its system on Thursday. The province took the service off-line and installed a security update before bringing it back online Friday, only to be told further investigation was needed. Cybersecurity experts were then called in on Saturday evening.
Clarke confirmed the investigation indicates that the data was stolen two days before the Nova Scotia government learned of the vulnerability. "So once we put the patching in place, there was no more nefarious activity that we were able to see," she said.
Microsoft Threat Intelligence has said in a tweet that the Lace Tempest hacking group, which is known for running the Clop extortion site, exploited that vulnerability.
LeBlanc would not confirm who had hacked into Nova Scotia's system, adding "I am not going to comment on interactions with criminals." But Clarke said the government "at this point in time" is not negotiating with the hackers.
"Now the focus is understanding the impact of the data that has been stolen, and we have not been asked for any ransom," she said.
The deputy minister said the government has been working with its internal security team as well as with outside experts, including an unnamed large private firm that the province has on retainer. Clarke said Nova Scotia is also working with the Canadian Centre for Cyber Security.
In an email, MOVEit said it disabled web access to protect customers and developed the security patch and gave it to customers within 48 hours of discovering the vulnerability.
"We are continuing to work with industry-leading cybersecurity experts to investigate the issue and ensure we take all appropriate response measures," the company said. "We have engaged with federal law enforcement and other agencies with respect to the vulnerability."
This report by The Canadian Press was first published June 6, 2023.
For more Nova Scotia news, visit our dedicated provincial page.
CTVNews.ca Top Stories
BREAKING King Charles' cancer treatment progressing well, says Buckingham Palace
King Charles III’s doctors are 'sufficiently pleased' with his cancer treatment and he is expected to return to public-facing duties, Buckingham Palace announced on Friday.
BREAKING Orca calf that was trapped in B.C. lagoon for weeks swims free
An orca whale calf that has been stranded in a B.C. lagoon for weeks after her pregnant mother died swam out on her own early Friday morning.
'Unacceptable': Trudeau reacts after AFN chief says headdress taken from plane cabin
After the Assembly of First Nations' national chief said her headdress was taken from an airplane cabin this week, Prime Minister Justin Trudeau called the incident 'unacceptable' and a 'mistake' on the part of Air Canada.
DEVELOPING Bird flu outbreaks: WHO weighs in on public health risk
The World Health Organization said on Friday that the current overall public health risk posed by H5N1 bird flu virus is low, but for those with exposure to infected birds or animals the risk of infection is considered low-to-moderate.
Sophie Gregoire Trudeau on navigating post-political life, co-parenting and freedom
Sophie Gregoire Trudeau says there is 'still so much love' between her and Prime Minister Justin Trudeau, as they navigate their post-separation relationship co-parenting their three children.
From faulty kids' cribs to flammable kids' bathrobes, here are the recalls of the week
Health Canada issued recalls for various items this week, including kids’ bathrobes, cribs and henna cones.
Taylor Swift dons Montreal designer's dress in 'Fortnight' video
A pair of Montreal designers' work has now been viewed over 41 million times. Taylor Swift dons a Victorian throwback black gown in her latest music video, 'Fortnight', designed by UNTTLD due Simon Belanger and Jose Manuel Saint-Jacques.
'Too young to have breast cancer': Rates among young Canadian women rising
Breast cancer rates are rising in Canada among women in their 20s, 30s and 40s, according to research by the University of Ottawa (uOttawa).
'Violation': CSIS had officer investigated after she reported a superior raped her
A CSIS officer's allegations that she was raped repeatedly by a superior in agency vehicles set off a harassment inquiry, but also triggered an investigation into her that concluded the alleged attacks were a “misuse” of agency vehicles by the woman.