Skip to main content

Cyber attack exposes banking information of thousands of Albertans

Share

Records of more than 1.4 million Albertans were the target of a cyber attack on a government service provider last month, the Alberta Dental Services Corporation said this week.

"We're disappointed," said Lyle Best, president of the ADSC and chairman of QuikCard Solutions Inc., in an interview with CTV News on Friday.

"We really value the information of Albertans and we try our best to keep it private."

On Thursday, the Edmonton-based company that provides IT infrastructure to the government program announced personal information was illegally accessed by a third party.

The data breach, which took place on July 26, included information relating to clients, cardholders, brokers and health benefit providers.

The firm says it "took immediate action" to secure its network once the breach was discovered.

"Quikcard engaged leading cybersecurity experts to assist with containment, remediation and to conduct a comprehensive forensic investigation into the nature and exent of the incident," the company said in a statement.

"Fortunately, Quikcard was able to recover the affected systems and data from backups with only minimal data loss."

That recovery involved paying a cryptocurrency ransom to the hackers, who had encrypted the data they stole.

Best said the information of more than one million Albertans was accessed, but only a small portion of those records contained information that would be useful to hackers.

"They really got no usable information other than a name and an identification number," he said.

About 7,300 ADSC clients had submitted more personal information into the database.

"There's no indication that these bad actors did anything with the data, but we could see they were looking for it," Best said.

Quikcard says the incident has been reported to police.

"Quikcard has also implemented enhanced safeguards to better prevent against an incident of this nature from occurring in the future," it wrote.

While the breach is a great concern, Best says the critical services for Albertans were not impacted.

"Going forward, we've been working with forensics and trying to figure out exactly how this happened. Early indications suggest it came from an email – a phishing email."

Best said "it's a wake up call" for all Canadian companies.

"If you do work on a network, you're vulnerable."

Quikcard says it has compiled a list of all affected clients and will be notifying those individuals and organizations about the breach as well as providing them with information on how to safeguard their personal information.

A website has also been set up for clients who have additional questions about the breach.

CTVNews.ca Top Stories

Why this Toronto man ran so a giant stickman could dance

Colleagues would ask Duncan McCabe if he was training for a marathon, but, really, the 32-year-old accountant was committing multiple hours of his week, for 10 months, to stylistically run on the same few streets in Toronto's west end with absolutely no race in mind. It was all for the sake of creating a seconds-long animation of a dancing stickman for Strava.

Poilievre suggests Trudeau is too weak to engage with Trump, Ford won't go there

While federal Conservative Leader Pierre Poilievre has taken aim at Prime Minister Justin Trudeau this week, calling him too 'weak' to engage with U.S. president-elect Donald Trump, Ontario Premier Doug Ford declined to echo the characterization in an exclusive Canadian broadcast interview set to air this Sunday on CTV's Question Period.

Stay Connected