in early February, have leaked stolen employee data to the dark web – a part of the internet used for illicit purposes, such as identity theft, the illegal organ trade and child pornography. The leak includes employees’ home addresses, postal codes, social insurance numbers, dates of birth, direct deposit information, bank account numbers, names, e-mail addresses and phone numbers, which have.
In her e-mail, Ms. Dumitru attached a copy of a letter that the union had sent to Indigo. “The company’s communication leaves several questions unanswered, most importantly, whether the company is aware of any unauthorized use of potentially affected personal information,” she said in the attached letter.
In a statement to The Globe, Indigo defended its offer for staffers caught up in the cybersecurity incident. “Indigo has followed industry best practices in providing two years of complimentary myTrueIdentity credit monitoring and identity theft protection services, including identity theft insurance, provided by TransUnion, and the company has been working with third-party experts to strengthen our cybersecurity practices, enhance data security measures, and review our existing controls.
Question is why they needed to collect all the information, and why did we give them? Time to regulate this.
LOL the book store is unionized 🤣🤣
I am still not clear on whether Indigo is honouring customer requests to have all personal data wiped clean, or even whether Indigo has the capacity to do so. I have made the request but I have not gotten notice that it has been done. It is just too dangerous.