P2021-ND-073

Keurig Canada Inc.

On November 3, 2020, the Organization’s service provider, Kitewheel LLC., was subject to a ransomware cyberattack. The threat actor accessed and exfiltrated personal information and demanded a ransom payment. While the data were stored in an encrypted database, it is reported that the threat actor obtained access credentials and was able to de-crypt the records for extraction. The Organization was notified of the breach on November 3, 2020, and was further notified on November 13, 2020 that the personal information of its customers was affected.

File Type: pdf
Categories: 2021
Tags: Unauthorized access