P2021-ND-260

Saskatchewan Blue Cross

On April 20, 2021, the Organization discovered it was the victim of a ransomware incident that resulted in the encryption of, and unauthorized access to, certain of its systems. The Organization determined that the incident was perpetrated by a third party threat actor that exfiltrated certain categories of data. The Organization?s investigation also determined that the root cause of the incident and compromise of its systems was likely through a phishing email, although the root cause of the incident cannot be conclusively determined. The Organization reported that it determined that the third party threat actor had unauthorized access to certain systems from approximately April 6, 2021 until April 20, 2021.

File Type: pdf
Categories: 2021
Tags: Unauthorized access