Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Incidents

Canada Revenue Agency Hit With Major Breach

October 30, 2024
Reading Time: 2 mins read
in Incidents
Canada Revenue Agency Hit With Major Breach

An investigation conducted by CBC’s The Fifth Estate and Radio-Canada has unveiled a troubling cybersecurity incident involving the Canada Revenue Agency (CRA), which has paid out millions in fraudulent refunds due to a breach that compromised over 62,000 taxpayer accounts between March 2020 and December 2023. The hackers exploited confidential data from H&R Block Canada, one of the country’s largest tax preparation firms, to gain unauthorized access to personal CRA accounts. This breach allowed them to change direct deposit information, submit false tax returns, and ultimately pocket more than $6 million in bogus refunds from the public purse.

The investigation revealed that, at the height of this year’s tax season, hackers utilized the credentials of H&R Block to infiltrate hundreds of Canadians’ CRA accounts. They managed to file false returns using legitimate postal codes but fabricated addresses, indicating a sophisticated level of planning and execution. Despite the significant financial impact and the breach of sensitive taxpayer information, the CRA’s response has been criticized for a lack of transparency, with no public alert issued regarding the magnitude of the breach or the extent of the fraud.

In light of the escalating number of privacy breaches, concerns have been raised regarding the CRA’s ability to protect taxpayer data. André Lareau, an associate tax professor at Laval University, stated that the CRA appears to have “failed to find the key to lock the door,” suggesting a systemic issue within the agency’s security measures. As auditors and investigators within the CRA scramble to address these cybersecurity threats, the public’s trust in the agency tasked with safeguarding sensitive financial information is at risk.

Calls for a parliamentary inquiry into the matter have intensified, urging the CRA and the Minister of Revenue, Marie-Claude Bibeau, to provide answers about the scale of the issue and the specific details surrounding the breaches. While the CRA has reported an alarming increase in the number of privacy breaches from 42 in previous years to over 31,468 in the current reporting period, the lack of communication to Parliament raises further questions about the agency’s commitment to transparency and accountability in safeguarding Canadians’ personal information. As this situation unfolds, the need for enhanced cybersecurity measures within the CRA becomes increasingly urgent to protect taxpayers from future fraud.

Reference:

  • Canada Revenue Agency Loses Millions in Fraudulent Refunds Post Third Party Breach
Tags: CanadaCanada Revenue AgencyCRAcyber incidentsCyber Incidents 2024Cyber threatsFradGovernmentOctober 2024
ADVERTISEMENT

Related Posts

Smishing targets routers in Belgium 2025

Dealership Software Breach Hits 766k

October 2, 2025
Smishing targets routers in Belgium 2025

Allianz Life July Breach Hits 1.5M

October 2, 2025
Smishing targets routers in Belgium 2025

Suffolk Website Down After Cyber-Attack

October 2, 2025
WestJet Confirms Data Breach

Ransomware Gang Recruits Reporter

October 1, 2025
WestJet Confirms Data Breach

WestJet Confirms Data Breach

October 1, 2025
WestJet Confirms Data Breach

US Surveillance Hack Exposes Data

October 1, 2025

Latest Alerts

Outlook Bug Causes Repeated Crashes

Smishing targets routers in Belgium 2025

MatrixPDF Toolkit Turns PDFs Into Lures

Tesla Fixes TCU Bug With USB Risk

Apple Pushes iPhone and Mac Updates

EvilAI Malware Posing As AI Tools

Subscribe to our newsletter

    Latest Incidents

    Allianz Life July Breach Hits 1.5M

    Dealership Software Breach Hits 766k

    Suffolk Website Down After Cyber-Attack

    WestJet Confirms Data Breach

    Ransomware Gang Recruits Reporter

    US Surveillance Hack Exposes Data

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial