MOVEit Victim List

The following list includes companies, organizations, and government agencies that were affected by the MOVEit file transfer software attack attributed to the CL0P (Clop) ransomware group. Notable victims include BORN Ontario. Below are other entities targeted by cyberattacks throughout 2024:

November 2024

Cyberattack on a business development company

• Organization: Alberta Innovates

• Location: Edmonton, Alberta

• Details: Cyberattack triggered an investigation.

• Source: Calgary Herald

October 2024

Cyberattack on a school board

• Organization: Conseil scolaire Viamonde

• Location: Toronto, Ontario

• Details: Cyberincident reported.

• Source: Conseil scolaire Viamonde

Cyberattack on a library

• Organization: Calgary Public Library (CPL)

• Location: Calgary, Alberta

• Details: CPL locations closed following a cybersecurity breach.

• Source: CTV News

July 2024

Ransomware attack on a city government

• Organization: City of Cold Lake

• Location: Cold Lake, Alberta

• Details: Recovery operations initiated post-attack.

• Source: Cold Lake News

June 2024

Cyberattack on a communication technology provider

• Organization: Mercku

• Location: Kitchener, Ontario

• Details: Support portal hacked, exploited for MetaMask phishing.

• Source: Bleeping Computer

Cyberattack on a dairy company

• Organization: Agropur

• Location: Longueuil, Québec

• Details: Data breach exposed customer information.

• Source: Bleeping Computer

Cyberattack on a purchasing cooperative

• Organization: Federated Co-op Limited

• Location: Saskatoon, Saskatchewan

• Details: Cyberattack caused supply chain disruptions.

• Source: Cabin Radio

May 2024

Cyberattack on a pharmaceutical company

• Organization: Pharmascience

• Location: Montreal, Québec

• Details: Attack compromised data security.

• Source: La Presse

Cyberattack on a provincial government

• Organization: British Columbia Government

• Location: Victoria, British Columbia

• Details: Sophisticated cybersecurity incidents reported.

• Source: Vancouver Sun

April 2024

Cyberattack on a professional association

• Organization: Ordre des infirmières et infirmiers du Québec (OIIQ)

• Location: Montreal, Québec

• Details: Irregular activity detected in IT systems.

• Source: Journal de Montréal

February 2024

Cyberattack on a police agency

• Organization: Royal Canadian Mounted Police (RCMP)

• Location: Ottawa, Ontario

• Details: Federal police agency targeted.

• Source: Reuters

January 2024

Cyberattack on a Canadian government agency

• Organization: Global Affairs Canada

• Location: Ottawa, Ontario

• Details: Authorities investigating a massive security breach at Global Affairs Canada.

• Source: CBC News

Cyberattack on a local government agency

• Organization: Town of Greater Napanee

• Location: Greater Napanee, Ontario

• Details: Town targeted by hackers, impact still under investigation.

• Source: Global News

Ransomware attack on a zoo

• Organization: Toronto Zoo

• Location: Toronto, Ontario

• Details: Toronto Zoo is currently dealing with a ransomware/cyber incident.

• Source: Toronto Zoo / CityNews Toronto