Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Incidents

Canada Revenue Agency Hit With Major Breach

October 30, 2024
Reading Time: 2 mins read
in Incidents
Canada Revenue Agency Hit With Major Breach

An investigation conducted by CBC’s The Fifth Estate and Radio-Canada has unveiled a troubling cybersecurity incident involving the Canada Revenue Agency (CRA), which has paid out millions in fraudulent refunds due to a breach that compromised over 62,000 taxpayer accounts between March 2020 and December 2023. The hackers exploited confidential data from H&R Block Canada, one of the country’s largest tax preparation firms, to gain unauthorized access to personal CRA accounts. This breach allowed them to change direct deposit information, submit false tax returns, and ultimately pocket more than $6 million in bogus refunds from the public purse.

The investigation revealed that, at the height of this year’s tax season, hackers utilized the credentials of H&R Block to infiltrate hundreds of Canadians’ CRA accounts. They managed to file false returns using legitimate postal codes but fabricated addresses, indicating a sophisticated level of planning and execution. Despite the significant financial impact and the breach of sensitive taxpayer information, the CRA’s response has been criticized for a lack of transparency, with no public alert issued regarding the magnitude of the breach or the extent of the fraud.

In light of the escalating number of privacy breaches, concerns have been raised regarding the CRA’s ability to protect taxpayer data. André Lareau, an associate tax professor at Laval University, stated that the CRA appears to have “failed to find the key to lock the door,” suggesting a systemic issue within the agency’s security measures. As auditors and investigators within the CRA scramble to address these cybersecurity threats, the public’s trust in the agency tasked with safeguarding sensitive financial information is at risk.

Calls for a parliamentary inquiry into the matter have intensified, urging the CRA and the Minister of Revenue, Marie-Claude Bibeau, to provide answers about the scale of the issue and the specific details surrounding the breaches. While the CRA has reported an alarming increase in the number of privacy breaches from 42 in previous years to over 31,468 in the current reporting period, the lack of communication to Parliament raises further questions about the agency’s commitment to transparency and accountability in safeguarding Canadians’ personal information. As this situation unfolds, the need for enhanced cybersecurity measures within the CRA becomes increasingly urgent to protect taxpayers from future fraud.

Reference:

  • Canada Revenue Agency Loses Millions in Fraudulent Refunds Post Third Party Breach
Tags: CanadaCanada Revenue AgencyCRAcyber incidentsCyber Incidents 2024Cyber threatsFradGovernmentOctober 2024
ADVERTISEMENT

Related Posts

Infostealer Hidden in Steam Game

Hackers Target Amazon’s AI Code Bot

July 25, 2025
Infostealer Hidden in Steam Game

APTs Use Fake Dalai Lama Apps to Spy

July 25, 2025
Infostealer Hidden in Steam Game

Infostealer Hidden in Steam Game

July 25, 2025
Interlock Ransomware Threat Alert

Hackers Use Ransomware on SharePoint Servers

July 24, 2025
Interlock Ransomware Threat Alert

Data Breach Affects 340K Jobseekers

July 24, 2025
Interlock Ransomware Threat Alert

Beluga Vodka Ransomware Attack Reported

July 24, 2025

Latest Alerts

CastleLoader Uses Clickfix on Windows

Sophos, SonicWall Patch Critical RCE Bugs

Koske Malware Hides in Panda Images

Interlock Ransomware Threat Alert

GitLab Patches Key Vulnerabilities

Backdoor Found in WP Plugins

Subscribe to our newsletter

    Latest Incidents

    Hackers Target Amazon’s AI Code Bot

    APTs Use Fake Dalai Lama Apps to Spy

    Infostealer Hidden in Steam Game

    Data Breach Affects 340K Jobseekers

    Hackers Use Ransomware on SharePoint Servers

    Beluga Vodka Ransomware Attack Reported

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial