While the repair caused by the Heartbleed bug is still going on, It is expected that account users are already changing passwords. We have been made to understand that the password change is not enough but at least our part should be done. However, for every reaction, there is a cause. For every Heartbleed victim, there is a suspect.
19year old Stephen Arthuro Solis-Reyes stole the Social Insurance numbers of more than 900 people using the Heartbleed exploit. Stephen Arthuro Solis-Reyes was arrested by the Royal Canadian Mounted Police and faces one count of Unauthorized Use of Computer and one count of Mischief in Relation to Data. The hack occurred only a day after CRA services were fully restored, following last week’s temporary shutdown due to the Heartbleed bug. A search of the suspect’s home led to the seizure of computer equipment.
Solis-Reyes is scheduled to appear in court in Ottawa on July 17.
Presently, Web-based organizations are scrambling to patch their systems before they become the next Canada Revenue Agency.Those 900 residents whose data was compromised can expect a registered letter informing them that they’ve been impacted; for added security, the agency will not be making phone calls or sending emails. It will, however, provide the affected users with free access to credit protection services and will apply additional protections to their CRA accounts to prevent future unauthorized activity.
The Heartbleed bug is caused by a flaw in OpenSSL software, commonly used on the Internet to provide security and privacy. The bug has affected many global IT systems in both private- and public-sector organizations and has the potential to expose private data.
