Canadian charged in 'Heartbleed' attack on tax agency
OTTAWA (Reuters) - Canadian police have arrested a 19-year-old man and charged him in connection with exploiting the "Heartbleed" bug to steal taxpayer data from a government website, the Royal Canadian Mounted Police (RCMP) said on Wednesday.
In what appeared to be the first report of an attack using a flaw in software known as OpenSSL, the Canada Revenue Agency (CRA) said this week that about 900 social insurance numbers and possibly other data had been compromised as a result of an attack on its site.
The suspect, Stephen Solis-Reyes, was arrested at his home in London, Ontario on Wednesday and faces criminal charges of unauthorized use of computer and mischief in relation to data.
"It is believed that Solis-Reyes was able to extract private information held by CRA by exploiting the vulnerability known as the Heartbleed bug," the RCMP said in a statement.
Police seized Solis-Reyes computer equipment and scheduled his court appearance for July 17, 2014.
Internet companies, technology providers, businesses and government agencies have been scrambling to figure out whether their systems are vulnerable to attack since the flaw was disclosed a week ago.
Security experts have warned that more attacks will follow.
(Reporting by Louise Egan; Editing by Chizu Nomiyama)
- Tweet this
- Share this
- Digg this
- China's Xiaomi hopes Mi 4 smartphone can take on Apple
- UPDATE 3-Rebels likely downed Malaysian jet 'by mistake' -U.S. officials
- Rebels likely downed Malaysian jet 'by mistake' - U.S. officials
- Analysis - Argentine default in balance as government refuses to capitulate
- Italy gives Google 18 months to change data use practices
Apple Inc posted a smaller-than-expected 6 percent rise in quarterly revenue on Tuesday, but revenue surged 28 percent in greater China despite stiff competition in its third-largest market. Read | China sales drive strong results