P2020-ND-155

Burgundy Asset Management Ltd.

On or about April 21, 2020, an employee of the Organization clicked on a phishing email and entered his log-in credentials for his work email account. Intermittently between April 21, 2020 and May 12, 2020, the credentials were used by an unauthorized party to log into the employee?s work email account via the Organization?s web-based access. On May 12, 2020, phishing emails that appeared to spoof the employee?s email address were sent to individuals whose information was stored in the employee?s email address book.

File Type: pdf
Categories: 2020
Tags: Unauthorized access