After Indigo cyberattack, the staff union is calling for more answers and help

After Indigo cyberattack, the staff union is calling for more answers and help

A union representing 200 staff of Indigo Books & Music Inc. is calling on the retailer to reveal more details about the scope of its current information breach and provide further help to staff affected by the cyberattack.

United Meals and Business Staff Worldwide Union Native 1006A mentioned Saturday that it is “more and more alarmed” by new info that has come to gentle a few Feb. 8 cyberattack on Canada’s greatest bookstore.

Present and former Indigo staff discovered this week that their medical and immigration information have been a part of the breach, which the Toronto-based retailer beforehand mentioned additionally included their names, electronic mail addresses, cellphone numbers, delivery dates, dwelling addresses, social insurance coverage numbers and direct deposit info corresponding to checking account numbers.

Learn more:

Indigo nonetheless grappling with fallout one month after ransomware assault

Story continues beneath commercial

Indigo blamed the assault on a ransomware software program generally known as LockBit and warned present and previous staff that their info could find yourself on the darkish net, an underground portion of the web used for illicit exercise. It mentioned it had not uncovered any proof of buyer info being breached.

However a letter UFCW despatched to Indigo this week mentioned a number of different key considerations had nonetheless not been addressed.

“The corporate’s communication leaves a number of questions unanswered, together with most significantly, whether or not the firm is conscious of any unauthorized use of the probably affected private info,” it learn.

The union representing staff at 4 shops in the Better Toronto Space additionally requested Indigo to elucidate what measures it is endeavor to raised safeguard information and present further help for staff who could face identification theft or different damages due to the assault.

Click to play video: 'Indigo under fire for turning away people without masks who are exempt'

Indigo underneath fireplace for turning away individuals with out masks who’re exempt

Indigo supplied staff two years of credit score monitoring final month when it first revealed the breach.

Story continues beneath commercial

The union referred to as the credit score monitoring provide “commendable,” however mentioned staff deserve more details about what different steps the firm will take to guard them ought to their information fall into unauthorized arms and be used for nefarious functions.

Learn more:

Knowledge breaches like Indigo’s are hitting staff, not clients. Are you able to sue?

“The present circumstances demand nothing much less from Indigo than a real dedication that it’s going to take all affordable steps to treatment any, and all results on staff arising out of the info breach,” the union mentioned.

Trending Now

What we learn about 4 Aptitude Airways planes seized over ‘business dispute’

3 ladies lacking in Mexico after crossing from Texas final month to promote garments

“We belief that Indigo will do the proper factor in the circumstances and put the greatest curiosity of its staff first.”

In response, Indigo mentioned it takes the privateness and safety of present and former staff critically and is working to make sure they obtain up-to-date details about the assault.

“We proceed to work to strike a steadiness between the necessity for well timed updates and the necessity for correct updates, and proceed to work to deal with questions and considerations as quickly as we’re ready,” the firm mentioned in a written assertion.

Click to play video: 'Toronto hospital network systems restored, says outage not a result of cyberattack'

Toronto hospital community techniques restored, says outage not a results of cyberattack

It added that it has been working with third-party specialists to strengthen its cybersecurity practices and improve information safety measures.

Story continues beneath commercial

The hack resulted in Indigo’s web site and fee techniques being abruptly booted offline.

The bookstore and dwelling items chain managed to shortly restore its fee techniques and quickly after launched a brief, browsable-only web site.

Indigo finally allowed clients to buy choose books by the website and has since been progressively importing more stock.

&copy 2023 The Canadian Press