P2017-ND-054

Desjardins Financial Security Insurance

The Organization was alerted that some of its customers had experienced credit card fraud. The Organization initiated an investigation into the matter and found there had been unauthorized access to the Organization?s website. The Organization discovered the incident on May 5, 2015. Malware that had been installed was removed. On June 10, 2015, the Organization discovered and removed additional malware from the website. The Organization reported that the website may have been compromised between October 15, 2014 and April 27, 2015, as well as between May 13, 2015 and June 10, 2015. The Organization reported that although the investigation did not find evidence that customer information was removed from the website, ?it seems likely that they extracted at least some customer information.?

File Type: pdf
Categories: 2017
Tags: Unauthorized disclosure