Heartbleed Exploit Used To Steal 900 Canadian Tax IDs
A security breach at the Canada Revenue Agency could be the worst known real-world exploit of the Heartbleed bug since it was made public last week. The CRA claims that almost 1,000 Social Insurance Numbers, as well as unspecified business data was removed from the CRA systems by hackers using the server vulnerability.
The breach happened after the CRA (and the world) learned about Heartbleed. While the agency took immediate action to secure its systems, hackers beat them to it and managed to grab the data before being shut out.
The agency assures there is no evidence of any similar breach before of since this incident.
Canadian authorities will be applying additional security measures to the compromised accounts to (hopefully) prevent any misuse of the data.