P2021-ND-024

American Public Works Association

On June 12, 2020, the Organization became aware it was the victim of a cybersecurity attack. An unauthorized third party deployed ransomware in an attempt to encrypt the Organization’s technology infrastructure. Some of the Organization’s employees experienced complications with email, however, there were no interruptions to its business operations. On July 1, 2020, the Organization discovered that the unauthorized third party had in fact gained access to and exfiltrated the personal information of employees and independent contractors of the Organization’s subsidiaries and affiliates resident in Canada including: TeraMach Technologies, Inc. and Pivot Acquisition Corp. On July 7, 2020, the Organization determined what type of personal information of employees and independent contractors was compromised in the incident. The Organization determined that the unauthorized user had access to its systems between June 9, 2020 and June 12, 2020.

File Type: pdf
Categories: 2021
Tags: Unauthorized access