-DLC- Posted December 17, 2019 Share Posted December 17, 2019 https://customernotice.lifelabs.com/?fbclid=IwAR01ZVSP0bpu-d2oJUWGgWo5sUVCC96iXRbbC4VWDEcYBSkRXjXWVLepdFc Except don't bother contacting them as, at least right now, it's pointless! They're having "technical difficulties" and can't provide the "unique activation code for cyber security protection services" as promised. Said to call back in 24 hours. Quote An Open Letter to LifeLabs Customers To our customers: Through proactive surveillance, LifeLabs recently identified a cyber-attack that involved unauthorized access to our computer systems with customer information that could include name, address, email, login, passwords, date of birth, health card number and lab test results. Personally, I want to say I am sorry that this happened. As we manage through this issue, my team and I remain focused on the best interests of our customers. You entrust us with important health information, and we take that responsibility very seriously. We have taken several measures to protect our customer information including: Immediately engaging with world-class cyber security experts to isolate and secure the affected systems and determine the scope of the breach; Further strengthening our systems to deter future incidents; Retrieving the data by making a payment. We did this in collaboration with experts familiar with cyber-attacks and negotiations with cyber criminals; Engaging with law enforcement, who are currently investigating the matter; and Offering cyber security protection services to our customers, such as identity theft and fraud protection insurance. I want to emphasize that at this time, our cyber security firms have advised that the risk to our customers in connection with this cyber-attack is low and that they have not seen any public disclosure of customer data as part of their investigations, including monitoring of the dark web and other online locations. We have fixed the system issues related to the criminal activity and worked around the clock to put in place additional safeguards to protect your information. In the interest of transparency and as required by privacy regulations, we are making this announcement to notify all customers. There is information relating to approximately 15 million customers on the computer systems that were potentially accessed in this breach. The vast majority of these customers are in B.C. and Ontario, with relatively few customers in other locations. In the case of lab test results, our investigations to date of these systems indicate that there are 85,000 impacted customers from 2016 or earlier located in Ontario; we will be working to notify these customers directly. Our investigation to date indicates any instance of health card information was from 2016 or earlier. While you are entitled to file a complaint with the privacy commissioners, we have already notified them of this breach and they are investigating the matter. We have also notified our government partners. While we’ve been taking steps over the last several years to strengthen our cyber defenses, this has served as a reminder that we need to stay ahead of cybercrime which has become a pervasive issue around the world in all sectors. Any customer who is concerned about this incident can receive one free year of protection that includes dark web monitoring and identity theft insurance. Yours sincerely, Charles Brown President and CEO LifeLabs Contact Us Customer Call Centre LifeLabs has activated a dedicated call centre for this incident. Call to find out more and to receive a unique activation code for cyber security protection services.1-888-918-0467 |Privacy Policy|Terms of Service|Terms of Use|Cookie Policy 1 Link to comment Share on other sites More sharing options...
An Open Letter to LifeLabs Customers To our customers: Through proactive surveillance, LifeLabs recently identified a cyber-attack that involved unauthorized access to our computer systems with customer information that could include name, address, email, login, passwords, date of birth, health card number and lab test results. Personally, I want to say I am sorry that this happened. As we manage through this issue, my team and I remain focused on the best interests of our customers. You entrust us with important health information, and we take that responsibility very seriously. We have taken several measures to protect our customer information including: Immediately engaging with world-class cyber security experts to isolate and secure the affected systems and determine the scope of the breach; Further strengthening our systems to deter future incidents; Retrieving the data by making a payment. We did this in collaboration with experts familiar with cyber-attacks and negotiations with cyber criminals; Engaging with law enforcement, who are currently investigating the matter; and Offering cyber security protection services to our customers, such as identity theft and fraud protection insurance. I want to emphasize that at this time, our cyber security firms have advised that the risk to our customers in connection with this cyber-attack is low and that they have not seen any public disclosure of customer data as part of their investigations, including monitoring of the dark web and other online locations. We have fixed the system issues related to the criminal activity and worked around the clock to put in place additional safeguards to protect your information. In the interest of transparency and as required by privacy regulations, we are making this announcement to notify all customers. There is information relating to approximately 15 million customers on the computer systems that were potentially accessed in this breach. The vast majority of these customers are in B.C. and Ontario, with relatively few customers in other locations. In the case of lab test results, our investigations to date of these systems indicate that there are 85,000 impacted customers from 2016 or earlier located in Ontario; we will be working to notify these customers directly. Our investigation to date indicates any instance of health card information was from 2016 or earlier. While you are entitled to file a complaint with the privacy commissioners, we have already notified them of this breach and they are investigating the matter. We have also notified our government partners. While we’ve been taking steps over the last several years to strengthen our cyber defenses, this has served as a reminder that we need to stay ahead of cybercrime which has become a pervasive issue around the world in all sectors. Any customer who is concerned about this incident can receive one free year of protection that includes dark web monitoring and identity theft insurance. Yours sincerely, Charles Brown President and CEO LifeLabs Contact Us Customer Call Centre LifeLabs has activated a dedicated call centre for this incident. Call to find out more and to receive a unique activation code for cyber security protection services.1-888-918-0467 |Privacy Policy|Terms of Service|Terms of Use|Cookie Policy
-DLC- Posted December 17, 2019 Author Share Posted December 17, 2019 https://www.citynews1130.com/2019/12/17/lifelabs-reveals-data-breach-paid-ransom-to-secure-personal-info-of-15m-people/?fbclid=IwAR1y-M8Yw016x9MjffM_A3GDgLk0-BQ8b7jk-sNzfLDKCew1LVpe7O1IUx0 From CityNews: Quote VANCOUVER (NEWS 1130) – The personal information of 15 million Canadians may have been exposed after a company that performs diagnostic, naturopathic, and genetic tests had its computer systems hacked. LifeLabs announced the breach on its website, saying it discovered the hack through proactive surveillance. The company says it paid a ransom in order to secure the data, including test results from 85,000 Ontarians. It says that the majority of affected customers are from B.C. and Ontario, and was discovered at the end of October. The compromised test results were from 2016 and earlier and LifeLabs says there is no evidence that results were accessed in other provinces aside from Ontario. We recently identified a cyber-attack that involved unauthorized access to our computer systems. We are sorry that this incident happened. The data has been retrieved, and a law enforcement investigation is underway. The Toronto-based company declined to say how much money was paid to secure the data. In an open letter, President and CEO Charles Brown says the health information that was compromised could have included names, addresses, email addresses, login information, passwords, date of birth, health card numbers and lab test results. “I want to emphasize that at this time, our cyber security firms have advised that the risk to our customers in connection with this cyber-attack is low and that [investigators] have not seen any public disclosure of customer data as part of their investigations, including monitoring of the dark web and other online locations,” Brown says in the letter. It is offering “one free year of protection that includes dark web monitoring and identity theft insurance” to any customers who are concerned about their information in the incident. There is currently a criminal investigation underway, and B.C.’s privacy commissioner is also looking into the breach. With files from the Canadian Press Link to comment Share on other sites More sharing options...
surtur Posted December 17, 2019 Share Posted December 17, 2019 I as a customer/user of the service am not concerned about them seeing the results of a few blood tests or to have the knowledge of my previous STI results. but considering i have been part of several of these security breaches as a customer on various web sites it is getting a little annoying knowing that i have already given up credit card numbers, online passwords and bank account information as well as basically all my personal information. from what i recall i have been a part of the Sony PSN hack/ breach, the capital one breach, Scotiabank, TransUnion, as well as probably more including Facebook, yahoo etc and now lifelabs. I am slowly starting to believe in the less is more approach. i am sure you can basically purchase my entire online identity on the dark web, what a thought that is. Link to comment Share on other sites More sharing options...
Tortorella's Rant Posted December 17, 2019 Share Posted December 17, 2019 Just now, 6of1_halfdozenofother said: Profits before protections. Yup, sounds like the world we signed up for. Very rarely does anybody go to prison for this so it'll keep happening A company I worked at also did the same thing. Not for profit but to simply make the job easier. Instead of addressing the vulnerability where an external PCI scan would detect this vulnerability, we worked around it by turning off certain services in the meantime. So every time the scan would pass successfully and then we'd turn on these services opening up the vulnerability again. Eventually it was patched. But if it wasn't and something happened, the company could have been majorily &^@#ed if there was an audit and a virtual paper trail because there always is. 1 Link to comment Share on other sites More sharing options...
Guest Posted December 17, 2019 Share Posted December 17, 2019 (edited) Keep in mind at the very least, they have your name, home address, DOB and sometimes even personal health numbers... Edited December 17, 2019 by Guest Link to comment Share on other sites More sharing options...
Popular Post goalie13 Posted December 17, 2019 Popular Post Share Posted December 17, 2019 The CEO is Charlie Brown? Oh brother. 3 5 Link to comment Share on other sites More sharing options...
kingofsurrey Posted December 17, 2019 Share Posted December 17, 2019 (edited) Doesn't really bother me.... I am just about finished with the robot i am building in my basement. My robot ( Duke ) will go to my workplace and complete my tasks.... iron my pants, clean my home.... and sleep with my wife.... So basically i am pretty set up going forward..... Not really worried about cyber attacks TBH. Edited December 17, 2019 by kingofsurrey 1 1 Link to comment Share on other sites More sharing options...
DADDYROCK Posted December 17, 2019 Share Posted December 17, 2019 "If" the people responsible for this breach are found,I HOPE THEY THROW NOT ONLY THE BOOK AT THEM, BUT THE WHOLE LIBRARY. Just more fodder for the scammers. Serious prison time may be a deterrent to stop this crap. Link to comment Share on other sites More sharing options...
Toni Zamboni Posted December 17, 2019 Share Posted December 17, 2019 30 minutes ago, goalie13 said: The CEO is Charlie Brown? Oh brother. beat me to it! 2 1 1 Link to comment Share on other sites More sharing options...
Popular Post JM_ Posted December 17, 2019 Popular Post Share Posted December 17, 2019 37 minutes ago, goalie13 said: The CEO is Charlie Brown? Oh brother. I think you mean good grief. 1 3 1 2 Link to comment Share on other sites More sharing options...
JM_ Posted December 17, 2019 Share Posted December 17, 2019 (edited) I was able to change my password a few minutes ago, so that part is working at least. Edited December 17, 2019 by Jimmy McGill 2 Link to comment Share on other sites More sharing options...
Kragar Posted December 17, 2019 Share Posted December 17, 2019 5 minutes ago, DADDYROCK said: Serious prison time may be a deterrent to stop this crap. Is there such thing in Canada? Link to comment Share on other sites More sharing options...
VanIsleNuckFan Posted December 17, 2019 Share Posted December 17, 2019 6 minutes ago, Kragar said: Is there such thing in Canada? No. He meant they may have to golf and fish with a curfew for a few years. Link to comment Share on other sites More sharing options...
Popular Post Shift-4 Posted December 17, 2019 Popular Post Share Posted December 17, 2019 9 minutes ago, Jimmy McGill said: I was able to change my password a few minutes ago, so that part is working at least. penis x-rays safe now? 1 4 Link to comment Share on other sites More sharing options...
Darius Posted December 17, 2019 Share Posted December 17, 2019 AM I missing something here? Why would they pay these pukes off? Pay them to get the data back...data they can make copies of...why would you trust these guys to be honorable in any transaction. Unless the locked down their systems and had to pay them off to get access again. Link to comment Share on other sites More sharing options...
Tortorella's Rant Posted December 17, 2019 Share Posted December 17, 2019 8 minutes ago, Kragar said: Is there such thing in Canada? No. Here in Abbotsford today a man possessing huge amounts of child porn got house arrest. 1 Link to comment Share on other sites More sharing options...
Ghostsof1915 Posted December 17, 2019 Share Posted December 17, 2019 The hacker is Lucy. Lock her up. 1 Link to comment Share on other sites More sharing options...
Kragar Posted December 17, 2019 Share Posted December 17, 2019 6 minutes ago, VanIsleNuckFan said: No. He meant they may have to golf and fish with a curfew for a few years. Well, if there is no beer, fishing might be a punishment 4 minutes ago, Tortorella's Rant said: No. Here in Abbotsford today a man possessing huge amounts of child porn got house arrest. Uneffingbelievable. Hope they at least took it away from him Link to comment Share on other sites More sharing options...
Tortorella's Rant Posted December 17, 2019 Share Posted December 17, 2019 3 minutes ago, Kragar said: Well, if there is no beer, fishing might be a punishment Uneffingbelievable. Hope they at least took it away from him Not only did they probably not, but they gave him a loaded credit card and a secure gigabit channel to the dark web as well. Link to comment Share on other sites More sharing options...
VanIsleNuckFan Posted December 17, 2019 Share Posted December 17, 2019 4 minutes ago, Kragar said: Well, if there is no beer, fishing might be a punishment Uneffingbelievable. Hope they at least took it away from him Haha to the first one.. WTF to the second. Link to comment Share on other sites More sharing options...
Recommended Posts
Please sign in to comment
You will be able to leave a comment after signing in
Sign In Now