The Canadian government recently acknowledged a cyber attack that compromised data through third-party contractors, Brookfield Global Relocation Services (BGRS) and SIRVA Worldwide Relocation & Moving Services. Although not a direct hit on government systems, the breach impacted data associated with government employees, Canadian Armed Forces members, and RCMP personnel dating back to 1999. The scale and diversity of breached information underscore the incident’s significance, affecting individuals linked to relocation services spanning more than two decades.
Identifying affected individuals remains challenging, but the government is proactively offering support. Current and former public service, RCMP, and Canadian Armed Forces members who used BGRS or SIRVA Canada for relocation within the last 24 years will receive services like credit monitoring and passport reissuance if compromised.
Authorities emphasize vigilance, advising impacted individuals to update credentials, enable multi-factor authentication (MFA), and monitor personal and financial accounts for suspicious activities. Though the incident’s specifics aren’t disclosed officially, reports suggest SIRVA might have encountered the LockBit ransomware.
The incident underscores the vulnerability posed by third-party breaches and highlights the need for robust cybersecurity measures across interconnected networks.
