A computer theft that occurred last week could put the sensitive information of 10,000 current and former employees of the CHU de Québec-Université Laval Research Center at risk. The organization determines that two people have already been arrested in connection with this case.
“This theft took place on the night of June 5-6. The next day, we noticed it,” said Jean-Thomas Grantham, Executive Vice President at CHU de Québec.
Marie-Yves Bellevue, a 40-year-old woman, and a 32-year-old man, Anthony Roy, appeared Wednesday morning at a Quebec court. Theft and receiving charges add to their already extensive criminal record.
Despite their arrest, the National Capital Police continues their investigation. Spokeswoman Sandra Dion specifies that research conducted in the Beauprey sector, on the outskirts of Quebec, made it possible to recover the computers.
“We cannot assume, adds CHU through a press release, that the information it contains has not been transferred into the hands of third parties.”
Grantham said the alleged criminals circumvented “several security protocols” to gain access to the stolen equipment. He specifies that the organization intends to learn “lessons” from the hack, which occurred at “the most important French-speaking research center in North America,” according to the CHU in Quebec.
CHU reports that the theft did not affect any research in progress.
Every employee has been contacted
The organization agrees to contact each employee affected by this breach of confidentiality. According to the organization, it is “highly likely” that the data of all people who worked at the CHU de Québec-Université Laval Research Center between March 1, 1994 and May 14 ended up in the stolen computers. “This includes, in particular, salaried employees, physicians, residents, students and researchers,” the organization adds.
Among the data that could be stolen are the name, date of birth, social security number, address, employment contract, resume or passport number of employees. Sample checks and tax form can also be hacked.
“There is no personal information regarding CHU de Québec-Université Laval patients or participants in CHU Research Center research projects,” asserts the organization, which oversees five hospital centers in Quebec.
At this time, there is no indication that PC content has been used or shared for fraudulent or malicious purposes, CHU continues. We have no reason to believe that this theft specifically targeted the sensitive data in question. »
Let’s see in the video
“Certified gamer. Problem solver. Internet enthusiast. Twitter scholar. Infuriatingly humble alcohol geek. Tv guru.”