CIRO cybersecurity incident
The Canadian Securities Administrators, the umbrella group of 13 provincial and territorial securities regulators, including the ASC, is aware that the Canadian Investment Regulatory Organization (CIRO) has identified additional individuals whose personal information was affected by a recent cybersecurity incident.
CIRO – a private, not-for-profit, self-regulatory organization – is notifying affected individuals and offering risk mitigation services to those impacted. CIRO is also working with law enforcement and external cybersecurity experts to limit the impact of the incident and to take steps to resolve it.
Investors, CIRO members and employees, and registrants (both current and former) may have questions about whether their personal information was affected by the breach, or what steps to take if they were affected. While the CSA continues to oversee CIRO’s efforts as part of its oversight role, CIRO is leading the response to the incident and has asked for questions to be sent to it directly.
Individuals with questions or concerns should reach out to CIRO’s dedicated support line centre at +1 833-489-8338 or by webform available on CIRO’s website: www.ciro.ca/ciro-cybersecurity-incident.
Support is available in both English and French.
Information about the incident, along with a comprehensive FAQ, is available on www.ciro.ca.