The Canada Revenue Agency (CRA) headquarters Connaught Building is pictured in Ottawa on Monday, Aug. 17, 2020. THE CANADIAN PRESS/Sean Kilpatrick

CRA resumes online services with new security features after cyberattacks

All individuals affected by the cybersecurity breaches will receive a letter from the CRA

The Canada Revenue Agency has resumed all online services after fraudsters used thousands of pilfered usernames and passwords to obtain government services.

The agency disabled the services Saturday after discovering more than 5,000 accounts had been the target of three cyberattacks.

Online access to “My Business Account” resumed Monday and all others were brought back online Wednesday evening.

The agency says it regrets the impacts on Canadians and has modified all its security systems to protect against future cyberattacks.

All individuals affected by the cybersecurity breaches will receive a letter from the CRA explaining how to confirm their identity in order to protect and restore access to their account.

The agency urges everyone using its online services to update their accounts with unique passwords they don’t use for any other purpose.

It also recommends all CRA “My Account” users enable email notifications as an additional measure of security.

They can also opt to use a new security feature that will allow them to set up a unique personal identification number to open an account.

About 5,600 CRA accounts were targeted in what the CRA has described as “credential stuffing” schemes, in which hackers used passwords and usernames from other websites to access Canadians’ CRA accounts.

The first of three attacks last week took aim at the GCKey service, which is used by about 30 federal departments and allows Canadians to access services like the My Service Canada account.

By using the previously stolen usernames and passwords, the perpetrators were able to fraudulently acquire about 9,000 of the some 12 million GCKey accounts.

Separately, CRA’s system was hit by credential stuffing attacks. The perpetrators were able to use previously hacked credentials to access the CRA portal. They were also able to exploit a vulnerability that allowed them to bypass the CRA security questions and get into thousands more accounts.

In addition, the CRA portal was directly targeted with a large amount of traffic trying to attack the services through credential stuffing.

The Canadian Press

Canadacybersecurity

Just Posted

Vancouver Island dance classes billed as female empowerment tool

New Comox Valley business focuses on ‘promoting positive body image’

Restored boat on display in Sointula, honouring the past

A 34-foot gillnet fishing boat built on Malcolm Island in 1948 is the newest museum addition

Langford racing enthusiast back in driver’s seat of life after surviving aggressive cancer

70-year-old David Smith finishes mid-pack in Canada 200 race at Western Speedway

Duncan family overwhelmed with 14 puppies

Chocolate lab litter may be one of the biggest ever

B.C. records 98 more COVID-19 cases, most in Lower Mainland

One new senior home outbreak, Surrey Memorial outbreak over

Police seek ‘high-risk sex offender’ last seen in Victoria

Scott Jones is wanted on a Canada-wide warrant for being ‘unlawfully at large’

Ride-hailing service nearly ready to start up in Nanaimo

Lucky to Go planning to launch Oct. 1

Three Vancouver Island photographers place in BC SPCA 2020 Wild-in-Focus photography contest

Out of 956+ submissions province wide, both winners place in separate categories

Victoria gets new collegiate baseball team, training facility

Golden Tide coach wants to see as many local kids play for the HarbourCats as possible

Hospice worker and patient butt heads in upcoming Nanaimo theatre production

Yellow Point Drama Group presents ‘Grace and Glorie’ at Cedar Community Hall

97 distressed horses, cats and dogs seized from farm in Princeton

RCMP assisted as BC SPCA executed search warrant

Most Read