The Canadian Securities Administrators (CSA) issued an advisory late on Friday warning about an individual who recently gained unauthorized access its national registration database.
A former contractor for Nunavut’s territorial government, with previously authorized access to the database while under contract, accessed information electronically. The individual disclosed the unauthorized access to CSA staff proactively. The CSA terminated the access immediately to the web-based system registrants use to file registration information with Canadian securities regulators — and the individual can no longer access further registrant information.
The individual accessed personal information for a single registrant and business information for select registrants from a single registered firm.
The group of provincial and territorial regulators has notified the registrant whose personal information was accessed and has contacted the registered firm.
The CSA conducts regular reviews of its systems to ensure all necessary protections and controls are in place. In addition, the CSA uses industry-recognized security services to monitor and protect its national systems and data from malicious activity.