Yesterday, both BMO and Simplii announced their systems had been infiltrated by rogues. Between them, they estimate the data of 90,000 customers may have been accessed.
Take away: If you are a customer of BMO or Simplii, check recent Interact transfers to ensure the email address is correct.
CBC News is reporting that BMO was advised of the attack by the attackers themselves. The attackers also wrote to the media to state they are demanding $1,000,000 ransom from the banks to keep their data safe.
People are reporting that money was transferred from accounts. The money seems to be transferred to pre-approved Interact recipients, with an amended email address. Therefore, at first glance, it seems all is well, but the recipient's email address may have been changed.
Both banks responded promptly and report confidence in their additional online security measures. They are asking customers who notice unusual activity to contact them.
It wasn’t until Gaudet expressed concern about suspicious activity that she was told someone had transferred $2,889 out of her account, she told Global News. Although the transfer went to one of Gaudet’s pre-approved Interac recipients, someone had changed that recipient’s email, she added. A previous illicit transfer had withdrawn $10, she also said.