The Canada Revenue Agency (CRA) headquarters Connaught Building is pictured in Ottawa on Monday, Aug. 17, 2020. THE CANADIAN PRESS/Sean Kilpatrick

CRA resumes online services with new security features after cyberattacks

All individuals affected by the cybersecurity breaches will receive a letter from the CRA

The Canada Revenue Agency has resumed all online services after fraudsters used thousands of pilfered usernames and passwords to obtain government services.

The agency disabled the services Saturday after discovering more than 5,000 accounts had been the target of three cyberattacks.

Online access to “My Business Account” resumed Monday and all others were brought back online Wednesday evening.

The agency says it regrets the impacts on Canadians and has modified all its security systems to protect against future cyberattacks.

All individuals affected by the cybersecurity breaches will receive a letter from the CRA explaining how to confirm their identity in order to protect and restore access to their account.

The agency urges everyone using its online services to update their accounts with unique passwords they don’t use for any other purpose.

It also recommends all CRA “My Account” users enable email notifications as an additional measure of security.

They can also opt to use a new security feature that will allow them to set up a unique personal identification number to open an account.

About 5,600 CRA accounts were targeted in what the CRA has described as “credential stuffing” schemes, in which hackers used passwords and usernames from other websites to access Canadians’ CRA accounts.

The first of three attacks last week took aim at the GCKey service, which is used by about 30 federal departments and allows Canadians to access services like the My Service Canada account.

By using the previously stolen usernames and passwords, the perpetrators were able to fraudulently acquire about 9,000 of the some 12 million GCKey accounts.

Separately, CRA’s system was hit by credential stuffing attacks. The perpetrators were able to use previously hacked credentials to access the CRA portal. They were also able to exploit a vulnerability that allowed them to bypass the CRA security questions and get into thousands more accounts.

In addition, the CRA portal was directly targeted with a large amount of traffic trying to attack the services through credential stuffing.

The Canadian Press

Canadacybersecurity

Get local stories you won't find anywhere else right to your inbox.
Sign up here

Just Posted

Citing stability, B.C. Premier calls snap election for Oct. 24

John Horgan meets with Lieutenant Governor to request vote

Violent wanted man may be in Okanagan

RCMP asking for public’s help in locating Roy Andrew

Morning Start: Polar bears don’t have white skin or fur

Your morning start for Tuesday, Sept. 22, 2020

No personal information released following ransomware attack, says RDOS

The RDOS suffered an attempted ransomware attack in August, halting services

COVID-19: 4 more deaths, 366 new cases in B.C. since Friday

A total of 8,208 people in B.C. have tested positive for COVID-19 since January

Here’s how voting amid a pandemic will happen in B.C.

Elections BC has worked with the provincial health office to determine safety protocols for voting

B.C. privacy commissioner will hear First Nations complaints about COVID

The hearing will rely on written submissions from the Indigenous governments as well as the Ministry of Health

Majority of Canadians support wearing masks during COVID-19, oppose protests: poll

Nearly 90 per cent felt wearing a mask was a civic duty because it protects others from COVID-19

Paper towel in short supply as people stay home, clean more, industry leader says

While toilet paper consumption has returned to normal levels, paper towel sales continue to outpace pre-COVID levels

16 COVID-19 cases reported in Interior Health region

One person is in hospital and 34 people are isolating

Group wants Parliament, courts to hold social media to same standard as publishers

Daniel Bernhard made the comments shortly after Friends of Canadian Broadcasting released a research paper

Truck, Shuswap police vehicle collide during arrest of wanted man

Emergency response team and helicopter called out to assist in Chase area arrest

Stolen vehicle recovered from site of Vernon manhunt for wanted man

Police return to Brooks Lane in response to reports of suspicious vehicle

Most Read