The Canada Revenue Agency expects online services to be fully restored by Wednesday after hackers used thousands of stolen usernames and passwords to fraudulently obtain government services.
About 5,600 CRA accounts were targeted in what the federal government describes as “credential stuffing” schemes, in which hackers used passwords and usernames from other websites to access Canadians’ revenue agency accounts.
Read more: Hackers targeted thousands of CRA, government service accounts in ‘credential stuffing’ attacks
Officials say the RCMP is investigating the breaches.
Get breaking National news
The suspension of CRA’s online services comes as many Canadians are using the revenue agency’s website to access financial support related to the COVID-19 pandemic.
- Applicants for child care operator licences in Saskatchewan say they’re being denied
- More than $500M likely required annually for Calgary to meet affordable housing targets
- First-ever Saskatchewan commodity showcase connects producers with global buyers
- Montreal-area family hopes daughter’s cancer journey inspires blood donors
A senior agency official told a news briefing today that Canadians can still apply for benefit programs by calling 1-800-959-8281.
The government is advising Canadians to use unique passwords for all online accounts and to check for suspicious activity.
Comments
Want to discuss? Please read our Commenting Policy first.