The court decision, made by Justice Sandra Wilkinson, certified a class action lawsuit that emerged after the incident exposed personal and financial information of thousands. This breach compromised sensitive data such as social insurance numbers and bank details—an alarming revelation for those affected.

Wilkinson’s ruling underscores a critical point: access to compromised data does not require proof that it was viewed or downloaded. This sets a precedent in the realm of cybersecurity litigation, particularly as cybercriminals increasingly target organizations like TransLink.

Statistics from the case reveal troubling figures:

• 39,000 individuals are involved in the class action lawsuit against TransLink.
• 57,820 letters were sent to individuals whose personal information was compromised.
• The ransomware attack occurred in December of 2020.

Justice Sandra Wilkinson noted that despite TransLink’s cybersecurity program, hackers managed to infiltrate the network security. This admission raises questions about the effectiveness of existing measures and the responsibility of organizations to safeguard user data.

The implications of this ruling extend beyond just one organization. It signals a shift in how courts might approach cases involving data breaches and individual privacy rights—an area still evolving in legal contexts.

As for what lies ahead, stakeholders will be watching closely. The next steps in this legal battle could redefine accountability standards within the cybersecurity landscape.

The post Judge: B.C. Empowers 39,000 Individuals Against TransLink appeared first on News Canada.

Recent statistics reveal alarming trends. One in five shipping companies faced a cyberattack in the previous 12 months. Ransomware attacks on ships increased by 150 percent in 2025. Spoofing of GPS systems surged, with around 1,000 incidents affecting approximately 40,000 vessels per day.

But it’s not just the numbers that matter; the implications are profound. Cyber incidents can cause operational, safety, and security failures that corrupt navigation or propulsion systems. As one expert noted, “Cyber incidents can cause operational, safety, and security failures that corrupt navigation or propulsion systems, for example, and it will be those on board who will have to respond.” This highlights the human element—a factor often overshadowed by technology.

Targeting of edge devices—including routers, VPNs, and firewalls—has soared by 800 percent. Yet only 17 percent of shipyards feel they possess adequate in-house expertise to design and construct a cyber-secure vessel. This gap poses a significant risk to the industry.

Maritime regulators are aware of these challenges. They have established a common framework for cyber risk management—a step in the right direction. ABB plays an integral role here, advising customers to upgrade obsolete systems before offering full cyber security recommendations.

As we look ahead, it’s clear that the maritime sector must adapt quickly to these evolving threats. The stakes are high; the cost of cyber risk will increase under Bill C-8—and that’s a good thing if it means greater accountability and investment in security measures.

Still, details remain unconfirmed about how effectively these measures will be implemented across the board. The industry stands at a crossroads: adapt or face dire consequences.

The post Cyber Risks Surge in Maritime Industry appeared first on News Canada.

The first incident dates back to July 2019 when a cyberattack compromised the personal information of over 37 million customers. Fast forward to September 2023, another breach occurred, prompting Canadians affected by these events to look for recourse. MGM has proposed a $4 million settlement for those impacted, allowing claims for substantiated losses up to $20,000.

Interestingly, MGM denies all allegations and liability regarding the data breaches. As Diamond and Diamond Lawyers LLP stated, “No court has found MGM liable. The parties agreed to settle to avoid the risk and expense of continued litigation.” This raises an important point: is settling an admission of guilt or merely a strategic move?

The settlement approval hearing is set for May 25. Until then, eligible Canadians can prepare their claims. For unsubstantiated losses, compensation is capped at $150 for one incident or $300 for both breaches. Will this be enough to satisfy those affected?

Meanwhile, Google has reached a preliminary $135 million settlement regarding the misuse of Android users’ data. This settlement could potentially include up to 100 million Android mobile users in the United States—an impressive number that underscores the widespread implications of data privacy issues.

To qualify for Google’s settlement, users must have utilized an Android phone with cellular data between November 12, 2017, and now. Payments are capped at $100 per eligible user—but that doesn’t guarantee anyone will actually receive the full amount.

As these settlements unfold, they serve as a stark reminder of the vulnerabilities present in our digital lives. Consumers are left wondering how much protection they truly have against corporate negligence.

The stakes are high for both companies and consumers alike. The outcomes of these settlements could set precedents in how data breach cases are handled moving forward.

For many affected individuals, these settlements represent not just financial compensation but also a chance to hold corporations accountable for their actions—or inactions—in safeguarding personal information.

As we await further developments, one thing remains clear: the conversation around data security is far from over.

The post Settlement Updates: MGM and Google Face Class Action Fallout appeared first on News Canada.

The recent visit of Belarusian President Alexander Lukashenko to Pyongyang from March 26 to March 27, 2026, has resulted in a treaty of friendship and cooperation between Belarus and North Korea. This development underscores a significant pivot in North Korea’s foreign relations strategy, particularly as it seeks to diversify its partnerships amidst ongoing tensions with the United States.

During his visit, Lukashenko ordered the establishment of a Belarusian embassy in North Korea, marking a formalization of diplomatic ties that have existed for 34 years. The two nations have engaged in economic exchanges, primarily focusing on trade in meat, dairy, and agricultural products, which could bolster North Korea’s struggling economy.

North Korea’s Foreign Minister Choe Son-hui had previously visited Minsk five months before Lukashenko’s trip, indicating a growing interest in strengthening ties with countries that share a historical friendship with the regime. Kim Jong-un has emphasized the importance of such relationships, particularly in light of the increasing isolation imposed by international sanctions due to its nuclear weapons development program.

Despite these efforts, North Korea remains under significant scrutiny. The regime has conducted multiple missile tests in recent years, with the latest reported in late March 2026. Additionally, North Korean hackers are believed to have stolen at least $2 billion in cryptocurrency in 2025, showcasing the regime’s reliance on cybercrime as a means of funding its activities.

While the relationship with Belarus is notable, it is viewed as less strategically significant compared to North Korea’s ties with Russia and China. Lukashenko’s role as a potential mediator in future talks between North Korea and the United States remains uncertain, particularly given his close ties to Russian President Vladimir Putin.

As North Korea continues to navigate its foreign policy, the implications of this newfound partnership with Belarus could have far-reaching effects. The regime’s ongoing denunciations of the United States as a “terrorist” state suggest that it may be seeking to solidify alliances with nations that oppose U.S. influence.

Details remain unconfirmed regarding the full extent of North Korea’s cyber activities and their implications for international security. The situation remains fluid, with further developments expected as North Korea seeks to bolster its international standing.

The post North Korea Strengthens Ties with Belarus Amid Ongoing Tensions appeared first on News Canada.

In a significant development for the software development community, the Axios npm package was compromised in a supply chain attack on March 31, 2026. This incident has raised alarms among developers and cybersecurity experts alike, as it underscores the vulnerabilities present in widely used software dependencies.

The attack unfolded between approximately 00:21 and 03:30 UTC, during which malicious versions of Axios, specifically axios@1.14.1 and axios@0.30.4, were published using a compromised maintainer account. These versions were live for about three hours before being removed by npm, affecting a staggering 300 million weekly downloads of Axios and 100 million downloads of the affected packages.

At the core of this attack was a hidden dependency on plain-crypto-js@4.2.1, which included a postinstall script that acted as a Remote Access Trojan (RAT). This malicious payload allowed unauthorized remote access to affected systems, impacting CI/CD pipelines and developer workstations that had installed the compromised packages. The incident highlights a growing trend of attackers targeting software supply chains through indirect dependency injection, a method that poses a significant risk to developers and organizations.

Ilkka Turunen, a cybersecurity expert, commented on the implications of the attack, stating, “Attackers have figured out they don’t need to compromise the code people trust if they can compromise the trust around it.” This sentiment reflects a broader concern within the industry regarding the integrity of software supply chains and the trust developers place in third-party packages.

The attack’s impact is still being assessed, with uncertainties remaining about the exact number of systems affected and the full extent of the attack’s impact on downstream dependencies. As organizations scramble to secure their environments, a 72-hour delay for new package installations has been recommended to mitigate potential risks.

Turunen further emphasized the gravity of the situation, noting, “When a widely trusted package can be turned into a delivery path like this, the issue is bigger than package hygiene. It’s a trust problem in the software supply chain.” This incident serves as a stark reminder that the security of software ecosystems is only as strong as their weakest link.

As the dust settles from this attack, the developer community is left to grapple with the implications for software security practices. The Axios incident is not an isolated case but part of a troubling trend that calls for enhanced scrutiny of package dependencies and a reevaluation of trust in the software supply chain. Details remain unconfirmed, but the lessons learned from this event will likely shape future approaches to securing software development environments.

The post Axios npm Package Compromised: A Wake-Up Call for Software Supply Chains appeared first on News Canada.

Just before the recent developments, Kash Patel, a notable figure in U.S. politics, was seemingly secure in his communications. However, this sense of security was shattered when news broke that his personal email had been hacked by the Handala Hack Team, a group linked to Iranian government cyber intelligence units.

On October 15, 2023, the FBI confirmed that Patel’s email account had indeed been compromised, with the hackers claiming to have accessed personal and work-related correspondence dating from 2010 to 2019. This breach raised alarms not only for Patel but also for national security observers, as it highlighted vulnerabilities in the cybersecurity landscape.

The Handala Hack Team took the audacious step of publishing photographs and documents from Patel’s inbox, including personal photos and even his resume. This act of cyber intrusion was accompanied by a statement from the hackers claiming that the FBI’s systems were compromised within hours of the breach.

In response, the FBI stated that the information in question is historical and involves no government information, attempting to downplay the potential ramifications of the hack. However, the implications of such a breach are far-reaching, especially considering the hackers’ previous claims of responsibility for cyberattacks on U.S. companies.

As the situation unfolded, the U.S. Department of Justice announced a reward of up to $10 million for information leading to the identification of the Handala Hack Team, emphasizing the seriousness with which the government is treating this incident. The FBI has also taken steps to mitigate potential risks associated with the hack, indicating that they are actively pursuing those responsible.

Kash Patel himself commented on the incident, stating, “Iran thought they could hide behind fake websites and keyboard threats to terrorize Americans and silence dissidents.” This statement underscores the broader implications of the hack, which not only affects Patel personally but also raises questions about the safety of communications for those involved in U.S. governance.

Currently, the situation remains tense as the FBI continues its investigation, and the Handala Hack Team’s actions have sparked discussions about cybersecurity preparedness in the face of foreign threats. The fact that all personal and confidential information of Kash Patel is now available for public download adds a layer of urgency to the matter.

As the investigation progresses, details remain unconfirmed regarding the full extent of the breach and its potential consequences for Patel and others involved. The implications of this incident serve as a stark reminder of the vulnerabilities present in our digital communications and the persistent threat posed by foreign cyber actors.

The post Kash Patel’s Email Hacked: A Major Cybersecurity Breach Linked to Iran appeared first on News Canada.

In a significant development for the banking sector, interbank transfers will be suspended from April 2 to April 7, 2026. This decision comes in response to a marked increase in fraud incidents associated with bank transfers, raising alarms among financial institutions and regulators alike.

During this four-day suspension, transfers between accounts within the same bank will remain unaffected, allowing customers to continue their transactions without interruption. However, the halt on interbank transfers is a precautionary measure aimed at addressing vulnerabilities that have been exploited by fraudsters.

Recent statistics reveal that a staggering €245 million was lost to fraud through manipulation in the first half of 2025, marking a 37% increase compared to the previous year. Alarmingly, 71% of the amounts extorted during psychological attacks were processed via bank transfers, underscoring the risks associated with this payment method.

The European Central Bank (ECB) has noted that payment settlement systems are closed on weekends and certain holidays, which may further complicate the landscape for consumers relying on interbank transfers. As the banking sector grapples with these challenges, the urgency to enhance security measures has never been more pronounced.

Fraud through manipulation has evolved alongside the rise of technology and mobile banking applications, making it imperative for financial institutions to adapt swiftly. Experts emphasize that the operation in question is not technically complex; it is simply the bank transfer that has become a target for fraudsters.

In light of these developments, financial authorities are urging consumers to remain vigilant. “No reputable financial institution will instruct you over the phone to make a transfer to protect your savings,” a spokesperson warned, highlighting the tactics used by fraudsters.

As the banking community prepares for the upcoming suspension of interbank transfers, the focus will undoubtedly shift towards implementing more robust security protocols to safeguard against future incidents. The current situation serves as a stark reminder of the vulnerabilities that persist within the financial system.

While the immediate reactions from financial institutions have been cautious, the broader implications of this suspension could lead to a reevaluation of how bank transfers are managed in the future. Stakeholders are keenly observing how these changes will impact consumer trust and the overall integrity of the banking system.

Details remain unconfirmed regarding any long-term changes that may arise from this suspension, but the urgency for reform is clear as the banking sector confronts the realities of modern fraud.

The post Virements bancaires: Bank Transfers Face Suspension Amid Rising Fraud Concerns appeared first on News Canada.

As the political landscape in Quebec continues to evolve, Éric Caire has made a significant announcement: he will not seek another mandate after 19 years in politics. This decision, effective March 26, 2026, marks the end of a notable chapter in his career, which began when he was first elected in 2007 under the banner of the Action démocratique du Québec.

Caire’s political journey has been marked by a commitment to activism, having accumulated 27 years of active involvement within the third way. In 2011, he transitioned to the Coalition Avenir Québec, a move that would define much of his subsequent political career.

His tenure saw him take on significant roles, including becoming the Minister Delegate for Government Digital Transformation in 2018 and later the Minister of Cybersecurity and Digital Affairs in 2022. However, his departure from the ministerial position is linked to the ongoing SAAQclic scandal, which has cast a shadow over his recent accomplishments.

Reflecting on his time in politics, Caire stated, “It is difficult to get into politics. It is just as difficult to last in it. The most difficult thing, however, remains getting out.” This sentiment resonates with many who have navigated the complexities of political life.

Despite stepping back from active politics, Caire remains a proud member of the CAQ, expressing his belief in the necessity of the third way that he and many others have worked to build over the past three decades. His commitment to this vision underscores the ideological foundations that have guided his career.

Caire’s political journey has not been without its challenges. In 2009, he attempted to become the leader of the Action démocratique du Québec but lost to Gilles Taillon, a setback that did not deter his ambitions.

As he prepares to leave the political stage, the implications of Caire’s departure are significant for both his party and the broader political landscape in Quebec. His absence will undoubtedly be felt, particularly in the realms of digital transformation and cybersecurity, where he has played a pivotal role.

Currently, the Coalition Avenir Québec faces the challenge of filling the void left by Caire’s departure. His contributions have been instrumental in shaping policies that resonate with the electorate, and finding a successor who can maintain this momentum will be crucial.

In summary, Éric Caire’s decision not to seek re-election is a poignant reminder of the transient nature of political careers. As he steps away, the future of his party and the initiatives he championed will be closely watched.

The post Eric caire: Éric Caire: A Political Journey Comes to an End appeared first on News Canada.