The personal and financial data of around 37,000 Canadians has been compromised in a cyber incident according to a report by HuffPost Canada.
The news outlet says that credit ratings firm TransUnion was the target of a hack over the summer with the attackers using an access code of one of a TransUnion customer business.
“The unauthorized access was not the result of a breach or failure of TransUnion’s systems or our customer’s systems,” a TransUnion spokesperson said in a statement emailed to HuffPost Canada.
The firm’s spokesperson added that the customers affected have been informed.
The incident was originally reported by BleepingComputer.com which has posted screenshots of the letter sent to TransUnion customers.
The report says that, once the hackers were able to access the firm’s portal, they could perform credit searches using a consumer's name, address, DOB, or Social Insurance Number.
The unauthorized access to the portal took place between June 28th and July 11th, 2019.
“While the unauthorized access was not the result of a breach or failure of TransUnion’s systems or our customer’s systems, the protection of consumer information is our top priority, and we therefore proactively notified the population whose information may have been accessed,” TransUnion told Bleeping Computer in an email.