Security concerns raised about third-party proof of vaccine apps
CALGARY -
A technology and cyber security expert is warning Albertans about third party apps that offer COVID-19 vaccination and rapid testing verification.
It comes after users complained of one Calgary-made app not working and others showed they were able to upload false information to the app, but were verified anyway.
The app is call PORTpass and it's recommended by the Calgary Sports and Entertainment Corporation (CSEC) -- the group that owns the Flames, Stampeders, Roughnecks and Hitmen -- to provide proof of vaccination upon entry to its sporting events.
Hours before the Flames' first preseason game at the Saddledome on Sunday, PORTpass announced it was experiencing technical difficulties and told fans to bring paper copies of their vaccination record to the game instead.
"It's great that entrepreneurs want to help out, but we heard tales of a bunch of people who tried to use PORTpass and couldn't get into the hockey game," said Tom Keenan, a cyber security expert with the University of Calgary.
Beyond the frustration for users on Sunday, Keenan says apps such as PORTpass also pose security and privacy concerns, too.
"The reality is you're giving up information to a total stranger and that information could come back to haunt you as identity theft," Keenan said.
VACCINE RECORD CAN BE MANIPULATED: APP USER
Conrad Yeung is a web developer in Calgary and downloaded PORTpass to see how the app worked. He said he made a fake vaccination record on the app using a different name and was verified by PORTpass.
"The first picture I uploaded was Rob Schneider in the poster of 'Deuce Bigalow: Male Gigalo' and I was like 'they accepted that? Cool, let's use that'," he said.
Conrad Yeung is a web developer in Calgary and downloaded PORTpass to see how the app worked. He said he made a fake vaccination record on the app using a different name and was verified by PORTpass.
"Then they asked for my driver's licence and I uploaded a random photo from the internet and that got verified, so I immediately knew there was probably something sketchy going on with the app," said Yeung, who posted a Twitter thread about his experience with PORTpass.
Yeung's profile stopped working on the PORTpass app Sunday evening, around the time the company reported it was dealing with technical difficulties.
The CEO of PORTpass agreed to do an interview with CTV News on Monday afternoon, but cancelled shortly after.
In a statement issued late Monday afternoon, the company says it has taken measures to "significantly increase the system's resources to meet the ongoing demand and ensure functionality for all users, all the time."
"PORTpass would like to reaffirm the commitment to security that has been central to it’s operations since Day 1 and address the recent claims on social media falsely claiming to have had unrestricted access to the system’s database," it read.
"The statements made are unequivocally untrue and PORTpass will be working with local authorities to take action against this malicious misinformation, and the submission of fraudulent documents. Documents uploaded for proof of vaccination and test results go through both manual review and machine learning analysis, and are securely used with Amazon Web Services.
"As a further demonstration of the commitment to security and transparency, PORTpass is taking steps to implement additional layers of security including steps toward SOC 2 compliance and working with a third party on a security audit. During this time of uncertainty, PORTpass continues to live by it’s mandate to provide a seamless way for local businesses to continue to serve their communities."
Keenan, the cyber security expert, was also able to be verified by PORTpass, despite not providing his own driver's licence when signing up for the app.
"There's a lot of information on your driver's licence, your passport. So instead I gave them my United States Library of Congress card and guess what? It took it. So, they're not really looking at what's going on there," Keenan said.
"We've got to get the (QR code) soon and I think the reality is that government-issued and supported apps are going to be the way to go," he added.
The Alberta Government is working on its own QR code for proof of vaccination, but there is no timeline on when it will be available to the public.
"Work is underway to provide proof of vaccination with an Alberta-verified QR code soon. We are monitoring the experiences of other provinces and privacy and security concerns are being taken into consideration," reads a statement from Alberta Health.
CSEC said it is aware of the security and privacy concerns raised by PORTpass users and is working with the company. A spokesperson for CSEC said more information would be available to fans in the next day or two.
CTVNews.ca Top Stories
Trump picks Brooke Rollins to be agriculture secretary
U.S. President-elect Donald Trump has chosen Brooke Rollins, president of the America First Policy Institute, to be agriculture secretary.
7 suspects, including 13-year-old, charged following 'violent' home invasion north of Toronto
Seven teenage suspects, including a 13-year-old, have been arrested following a targeted and “violent” home invasion in Vaughan on Friday, police say.
Walking pneumonia is surging in Canada. Is this unusual?
CTVNews.ca spoke with various medical experts to find out the latest situation with the typically mild walking pneumonia in their area and whether parents should be worried.
Lotto Max jackpot climbs to $80M, tying record for largest prize
The Lotto Max jackpot has climbed to $80 million for just the second time in Canadian lottery history.
Widow of Chinese businessman who was executed for murder can sell her Vancouver house, court rules
A murder in China and a civil lawsuit in B.C. have been preventing the sale of multiple Vancouver homes, but one of them could soon hit the market after a court ruling.
Retiring? Here's how to switch from saving for your golden years to spending
The last paycheque from a decades-long career arrives next Friday and the nest egg you built during those working years will now turn into a main source of income. It can be a jarring switch from saving for retirement to spending in retirement.
Police thought this gnome looked out of place. Then they tested it for drugs
During a recent narcotics investigation, Dutch police said they found a garden gnome made of approximately two kilograms of MDMA.
Bluesky takes bite out of X, as global users flee social media giant: analyst
A Canadian technology analyst says it appears Bluesky has legitimate growth momentum in the U.S. and elsewhere, and could be a significant threat to X.
Joly, Blair condemn anti-NATO protest in Montreal that saw fires, smashed windows
Federal cabinet ministers condemned an anti-NATO protest in Montreal that turned violent on Friday, saying 'hatred and antisemitism' were on display, but protesters deny the claim, saying they demonstrated against the 'complicity' of NATO member countries in a war that has killed thousands of Palestinians.
Shopping Trends
The Shopping Trends team is independent of the journalists at CTV News. We may earn a commission when you use our links to shop. Read about us.
Edmonton
-
From Instagram to IRL: Where to find this year's trendy treats in Edmonton
From globally-inspired pastries to vegan fast food and Connor McDavid-themed culinary delights, Edmonton has a lot to offer anyone looking to try something trendy.
-
Edmonton calls parking ban after city hit with heavy snowfall
Edmonton has called its first parking ban of the season as the city remained under a snowfall warning.
-
Hit-and-run driver wanted after pedestrian hit in southeast Edmonton
Police are looking for a hit-and-run driver after a pedestrian was hit on Thursday night.
Lethbridge
-
Hurricanes road misery continues with 6-3 loss to Winterhawks in Portland
The Hurricanes dropped their third straight game on Friday night, losing 6-3 to the Winterhawks in Portland.
-
Emergency water main break disrupts traffic on 5 Avenue North in Lethbridge
City crews are working to repair an emergency water main break on 5 Avenue North between 28 Street North and 29 Street North Saturday morning.
-
Lethbridge’s Ron Sakamoto honoured at Country Music Awards in Nashville
Lethbridge’s Ron Sakamoto is bringing home the hardware from this year’s Country Music Awards.
Vancouver
-
Widow of Chinese businessman who was executed for murder can sell her Vancouver house, court rules
A murder in China and a civil lawsuit in B.C. have been preventing the sale of multiple Vancouver homes, but one of them could soon hit the market after a court ruling.
-
Black bear killed in self defence after attack on dog-walker in Maple Ridge
A black bear has died following a brawl with a man on a trail in Maple Ridge.
-
Man arrested after allegedly attempting to set fire to Vancouver City Hall
A 36-year-old man was arrested and is facing criminal charges after allegedly trying to start a blaze at the front of Vancouver City Hall Friday night.
Vancouver Island
-
BC Hydro says power almost fully restored after B.C. windstorms
British Columbia's electric utility says it has restored power to almost all customers who suffered outages during the bomb cyclone earlier this week, but strong wind from a new storm has made repairs difficult in some areas.
-
Fall legislative sitting scrapped in B.C. as Speaker Chouhan confirmed to serve again
There won't be a sitting of the British Columbia legislature this fall as originally planned.
-
Canada Post down eight million parcels amid strike as talk carry on over weekend
Canada Post says it has seen a shortage of more than eight million parcels amid an ongoing strike that has effectively shut down the postal system for nine days compared with the same period in 2023.
Saskatoon
-
'I'm excited to take it on': Saskatoon businesses weigh in on GST exemption
Some local businesses say the federal government’s recent plan to pull back GST on several items is a positive initiative, but it should have been rolled out earlier in the holiday season.
-
Watermain break closes Saskatoon road
The City of Saskatoon is advising motorists of road closures due to a watermain break that caused flooding on Millar Avenue near Circle Drive.
-
Why isn't Saskatoon's new downtown shelter open yet?
Saskatoon's new downtown shelter must undergo renovations before it can open, according to the operator of the site.
Regina
-
City of Regina releases snowfall response plan ahead of next blast of wintery weather
Many parts of Saskatchewan will be hit with another round of wintery weather on Saturday, and Regina is no exception, with up to 25 centimetres of snow expected to accumulate.
-
NDP calls for investigation into food prices in northern Sask. after scurvy cases discovered
The Saskatchewan NDP is calling for an investigation into food prices in the northern part of the province after 27 cases of scurvy were discovered.
-
Ministry of Highways releases annual snow campaign as Sask. braces for more snow
Snowplows will be on standby ready to go as the province is expected to get more snow over the weekend.
Toronto
-
7 suspects, including 13-year-old, charged following 'violent' home invasion north of Toronto
Seven teenage suspects, including a 13-year-old, have been arrested following a targeted and “violent” home invasion in Vaughan on Friday, police say.
-
'Her shoe got sucked into the escalator': Toronto family warns of potential risk of wearing Crocs
A Toronto family is speaking out after their 10-year-old daughter's Crocs got stuck in an escalator, ripping the entire toe area of the clog off.
-
Lotto Max jackpot climbs to $80M, tying record for largest prize
The Lotto Max jackpot has climbed to $80 million for just the second time in Canadian lottery history.
Montreal
-
Montreal prepares to sell long-abandoned Empress theatre
The Empress Theatre, a nearly century-old landmark in Montreal's Notre-Dame-de-Grâce (NDG) neighbourhood, may soon be revitalized.
-
Santa Claus Parade draws crowds to downtown Montreal
Thousands gathered on René-Lévesque to welcome Santa Claus at this year’s festive parade. Choir groups, marching bands, dancers and more brought the holiday joy this year.
-
Quebec MNAs continue screen time consultations with students
Quebec's special commission on the impact of screen time and social media addiction among youth made a stop at Westmount High School this week, speaking directly with students about their habits and concerns.
Atlantic
-
'We need answers': Protest held at RCMP detachment for suspicious disappearance of N.B. man
A crowd of over 20 people stood in the pouring rain Saturday in front of the RCMP detachment in Hampton, N.B., to bring awareness to a missing person’s case.
-
Canada Post down eight million parcels amid strike as talk carry on over weekend
Canada Post says it has seen a shortage of more than eight million parcels amid an ongoing strike that has effectively shut down the postal system for nine days compared with the same period in 2023.
-
17-year-old dies following single-vehicle crash in Turtle Creek: N.B. RCMP
A 17-year-old boy from Petitcodiac, N.B., has died following a single-vehicle crash in Turtle Creek, N.B.
Winnipeg
-
Snowfall warning in effect for southwestern Manitoba
Some areas could expect snowfall totals of 15 to 25 centimetres.
-
The Thriftmas Special: The benefits of second-hand holiday shopping
The holidays may be a time for family, joy and togetherness, but they can also be hard on the wallet.
-
Two Manitobans charged in two-day manhunt in northwestern Ontario
A two-day manhunt in northwestern Ontario has ended in more than 20 charges against a Manitoba man and woman.
Ottawa
-
Mixed reaction from Ottawa business owners, customers on GST exemption
Business owners say they've been left with questions about how a temporary tax exemption to the GST will work after the federal government announcement the policy last week.
-
Ottawa councillor violated Code of Conduct for daycare incident last summer, integrity commissioner concludes
The City of Ottawa's integrity commissioner has found West-Carleton March Coun. Clarke Kelly has violated the Code of Conduct for city officials and should be reprimanded following an altercation with a local daycare owner and staff last summer.
-
Ottawa driver fined for hauling thousands of empty cans in trunk of car
Ontario Provincial Police stopped an Ottawa man for dangerously hauling thousands of empty cans from the back of his car.
Northern Ontario
-
Northern Ont. First Nation files claim against Ontario and Newmont mining
Taykwa Tagamou Nation, a Cree First Nation located within Treaty 9, has filed a statement of claim against the Province of Ontario and Newmont, a mining company that owns properties in Timmins.
-
Senior killed in dog attack in northern Ont.
An 81-year-old was killed in a dog attack this week in Bonfield, Ont. Police believe three dogs were involved.
-
More carrots pulled from grocery store shelves in expanded recall for E. coli: CFIA
The Canadian Food Inspection Agency has announced an expanded recall on carrots over risks of E. coli O121 contamination, according to a notice issued Friday.
Barrie
-
Highway 400 reopens in Muskoka Lakes after fatal propane truck rollover
Highway 400 reopened late Friday night in Georgian Bay Township after emergency crews tended to a fatal tanker truck rollover Friday morning.
-
Missing man in Collingwood
Collingwood OPP are searching for a 79-year-old man who was last seen early Saturday morning.
-
Youth reportedly struck in hit-and-run
Police are continuing to investigate a collision in Gravenhurst from earlier this week, where a driver allegedly struck a young pedestrian and fled the scene.
Kitchener
-
Advocates push for anti-renoviction bylaws as Waterloo Region reports affordable housing progress
On National Housing Day, housing advocacy group ACORN continued to push for anti-renoviction bylaws.
-
Man charged in Kitchener crash involving Grand River Transit LRT
Charges were laid after a crash between an LRT train and a Dodge vehicle shut down a busy Kitchener street for more than eight hours on Thursday.
-
How University of Waterloo researchers could help charge your devices by moving your body
Imagine being able to charge your devices through your body’s movements.
London
-
Two people airlifted, several taken to hospital due to collision
Two people have been airlifted to hospital following a serious collision in Norfolk County.
-
South Bruce residents vote in favour of hosting nuclear waste project in narrow referendum
South Bruce residents narrowly voted in favour of plans to bury Canada’s most radioactive nuclear waste under their municipality on Monday.
-
St. Thomas, Ont. and San Jose, Calif. celebrate hockey legend on night his jersey is retired
The Jumbo elephant monument in St. Thomas, Ont. will be lit in teal Saturday night as the city honours hockey legend Joe Thornton.
Windsor
-
Charity produces record amounts of non-perishable food amidst rise in food insecurity
A Windsor-Essex charitable organization created a record amount of non-perishable food amidst an increase in food insecurity, both at home and abroad.
-
No impaired drivers detected during Friday night RIDE checks
The Windsor Police Service reports no detected impaired drivers on Friday night during their RIDE checks.
-
Truck fire on the Ambassador Bridge
Windsor fire responded to a transport truck fire on Friday afternoon on the Ambassador Bridge.
