OVERKILL
$100 Site Donor 2021
http://www.mykawartha.com/news-story/4468539-man-19-charged-in-heartbleed-privacy-breach/
Quote:
OTTAWA - Police have charged a 19-year-old man from London, Ont., in connection with the loss of taxpayer data from the Canada Revenue Agency website.
Stephen Arthuro Solis-Reyes was arrested at his residence Tuesday and is charged with unauthorized use of a computer and mischief in relation to data, the RCMP said Wednesday.
A search of the residence resulted in the seizure of computer equipment.
Solis-Reyes is a computer science student at Western University, a spokesman for the university said.
The Canada Revenue Agency was forced to shut down its publicly accessible website Friday as the world learned about the Heartbleed computer bug, a previously undiscovered global Internet security vulnerability.
Other government computer sites were also temporarily taken down over the weekend.
On Monday, the agency said 900 social insurance numbers had been compromised.
The loss was detected Friday, but the agency delayed telling Canadians about it at the request of the RCMP.
The police said the delay allowed them to pursue their investigation through the weekend and helped track down a suspect.
"The RCMP treated this breach of security as a high priority case and mobilized the necessary resources to resolve the matter as quickly as possible," said Assistant Commissioner Gilles Michaud.
"Investigators from National Division, along with our counterparts in O Division, have been working tirelessly over the last four days analyzing data, following leads, conducting interviews, obtaining and executing legal authorizations and liaising with our partners."
The fact police were able to follow the trail back to the alleged hacker — let alone so quickly — speaks to his level of experience, says an Internet security expert.
"They were not a very sophisticated attacker. Any attacker worth their salt would have been covering their track a lot better than that," said Mark Nunnikhoven, vice-president of cloud and emerging technologies at the software security firm Trend Micro.
Quote:
OTTAWA - Police have charged a 19-year-old man from London, Ont., in connection with the loss of taxpayer data from the Canada Revenue Agency website.
Stephen Arthuro Solis-Reyes was arrested at his residence Tuesday and is charged with unauthorized use of a computer and mischief in relation to data, the RCMP said Wednesday.
A search of the residence resulted in the seizure of computer equipment.
Solis-Reyes is a computer science student at Western University, a spokesman for the university said.
The Canada Revenue Agency was forced to shut down its publicly accessible website Friday as the world learned about the Heartbleed computer bug, a previously undiscovered global Internet security vulnerability.
Other government computer sites were also temporarily taken down over the weekend.
On Monday, the agency said 900 social insurance numbers had been compromised.
The loss was detected Friday, but the agency delayed telling Canadians about it at the request of the RCMP.
The police said the delay allowed them to pursue their investigation through the weekend and helped track down a suspect.
"The RCMP treated this breach of security as a high priority case and mobilized the necessary resources to resolve the matter as quickly as possible," said Assistant Commissioner Gilles Michaud.
"Investigators from National Division, along with our counterparts in O Division, have been working tirelessly over the last four days analyzing data, following leads, conducting interviews, obtaining and executing legal authorizations and liaising with our partners."
The fact police were able to follow the trail back to the alleged hacker — let alone so quickly — speaks to his level of experience, says an Internet security expert.
"They were not a very sophisticated attacker. Any attacker worth their salt would have been covering their track a lot better than that," said Mark Nunnikhoven, vice-president of cloud and emerging technologies at the software security firm Trend Micro.