Cyberattack hits vaccine records for thousands of Durham Region children: CTV News investigation
The personal information of more than three thousand children in daycares throughout Durham Region was stolen in a cyberattack early this year that CTV News Toronto has learned is larger than previously known.
That data from some 80 daycares, which also included the detailed vaccination records of some 200 children, was recently discovered on a website with ties to a Ukrainian group believed to be involved in ransomware attacks that was raided by police in June.
“That it’s out there for anybody to see is a little jarring,” Chris Perera said after learned his two-year-old child’s vaccine record was among the files that had been taken.
He said he had been warned in general by Durham Region that his data may have been affected, but he wished they had been more specific so that he would be able to better respond.
“When you get a letter from the region saying your information has been leaked, your head is going so many different ways, I wish they could have said specifically what’s out there,” he said.
Records seem to indicate that the personal information of some 3200 children and their families were taken as part of a file transfer that appears to be related to the uploading of the children’s vaccination status to the region’s health department.
Some day cares have been told that they are to cease sending that detailed vaccination information for now.
Nadine Koch, a supervisor at Kindertots Child Care Centre in Ajax, said her daycare has taken on keeping track of vaccination records by themselves.
“We’re just handling it on our own because we haven’t been told when to submit it. It’s been put on the back burner,” she said.
Koch said the region had informed them that they were among the daycares affected in April, the month after the breach was first discovered.
The breach appears to be related to the Accellion file transfer system, Brett Callow a threat analyst with Emsisoft told CTV News Toronto.
“That data somehow ended up in the hands of a group called CLOP,” he said.
The Ukrainian police said in a statement on their website they believe CLOP is behind attacks from South Korea to the United States, pointing to attacks in 2021 on the personal data and financial reports of Stanford University Medical School, the University of Maryland, and the University of California.
News of the arrests was sure to disrupt the group to some extent, but the group’s presence continues online, he said.
The Accellion software has been fixed, he said.
Durham Region has said it took “prompt steps” to contain the incident, which it said was caused by a vulnerability in a third party software.
“We have stopped using the third party software involved,” the region has said.
Perera said he is not as bothered about the information being online as he might be in another circumstance, as the vaccination data of his two-year-old isn’t going to help online predatorsin further attacks, including attempts at identity theft.
But he said it’s important that the region’s computers are secure.
"Cybersecurity needs to be a priority, especially when it’s an infrastructure that communicates such specific information."
CTVNews.ca Top Stories

Two Canadian citizens confirmed dead in Antigua: Global Affairs
Global Affairs Canada has confirmed the death of two Canadian citizens in Antigua and Barbuda, news that comes amid reports from local officials that a woman and child drowned last week at Devil’s Bridge.
Senators were intimidated, had their privilege breached, Speaker rules
Any attempt to intimidate a senator while in the process of fulfilling their duties is a breach of their privilege, even if the effort is ultimately unsuccessful, the Speaker of the Senate ruled Tuesday.
Nearly 70 victim impact statements expected at Nathaniel Veltman sentencing
As the Crown and the defence discussed legal matters ahead of the sentencing hearing of Nathaniel Veltman, the court heard that 68 victim impact statements are expected to be submitted.
'Widespread' sexual and gender-based crimes committed during Hamas attack, Israeli officials say
Israeli officials say there were 'widespread' sexual and gender-based crimes committed by Hamas during its Oct. 7 surprise attack on Israel.
Montreal Mayor Valerie Plante collapses during press conference
Montreal Mayor Valérie Plante is 'doing well' but will reduce the pace of her activities over the next few days after collapsing during a press conference at City Hall on Tuesday morning.
opinion Tom Mulcair: Poilievre keeps scoring into the Liberals' empty net
In his column for CTVNews.ca, former NDP leader Tom Mulcair says Pierre Poilievre's new 'Housing Hell' video dealt a 'devastating' blow to Prime Minister Justin Trudeau and his Liberals, whose cupboard seems empty of big ideas.
Here is Canada's unseasonably mild December forecast
December is predicted to be unseasonably mild across Canada, thanks to a "moderate-to-strong" El Nino and human-caused warming. Warming and precipitation trends will be stronger in some parts of the country than others, and severe weather is still possible, meteorologists say.
Israel moves into Gaza's second-largest city and intensifies strikes in bloody new phase of the war
Israel said Tuesday that its troops had entered Gaza's second-largest city as intensified bombardment sent streams of ambulances and cars racing to hospitals with wounded and dead Palestinians, including children, in a bloody new phase of the war.
Canadian 15-year-old students' math scores have been dipping since 2003: study
Most 15-year-old students in Canada met the basic standards for math and the country was among the top 10 performers in the tests, though scores have been dropping since 2003, according to a new global report.