[BreachExchange] Canadian Firm Canpar Express Becomes Ransomware Attack Victim Attribution link: https://latesthackingnews.com/2020/09/01/canadian-firm-canpar-express-becomes-ransomware-attack-victim/

Destry Winant destry at riskbasedsecurity.com
Wed Sep 2 10:26:32 EDT 2020


https://latesthackingnews.com/2020/09/01/canadian-firm-canpar-express-becomes-ransomware-attack-victim/

A Canadian shipping company, Canpar, has emerged as the latest prey to
a ransomware attack. The incident caused huge business disruption.

Canpar Suffered Ransomware Attack

Reportedly, the Canadian shipping company Canpar has recently become a
victim of a ransomware attack. Following the cyberattack, the firm’s
moving and shipping services experienced disruptions alongside a
site-wide outage.

The company confirmed the incident via a post on their official
Facebook page. As revealed, the company experienced a ransomware
attack on August 19, 2020. The attack affected some of its systems.
Nonetheless, they confirm that the incident did not affect customers’
data in any manner. As stated in the post, We are not aware of any
misuse of client information. Out of an abundance of caution we want
to make our clients aware of the incident, should you be experiencing
any issues.

Upon detecting the attack, the firm took steps for remediation and
started investigations. Upon learning of the incident, we immediately
began an investigation and engaged cybersecurity experts to assist in
the process.

Other TFI International Subsidiaries Also Affected

According to FreightWaves, Canpar Express isn’t the only target for
the ransomware. Rather the incident also affected other subsidiaries
of the parent company TFI International. The affected divisions
reportedly include Loomis Express, ICS Courier, and TForce Integrated
Solutions as well.

While the website of Canpar Express is up now, the sites of other
divisions are still down at the time of writing this article. They
display the following security notices on the sites.

For now, the kind of ransomware, the extent of the attack, and other
details are unavailable. The firms have only stated about the security
steps that they have taken to ‘prevent similar occurrences in the
future’.


More information about the BreachExchange mailing list