Canada Revenue Agency says that approximately 900 social insurance numbers were stolen from its system due to Heartbleed bug. The federal tax agency stated in a press release Monday that the "malicious breach of taxpayer data" occurred over a period of six-hours.
"We are currently going through the painstaking process of analyzing other fragments of data, some that may relate to businesses, that were also removed," said CRA Commissioner Andrew Treusch.
Those affected by the breach will be notified by the agency via email or phone.
"We want to ensure that our communications are secure and cannot be exploited by fraudsters through phishing schemes."
Meanwhile, the CRA assured that no other thefts occurred using Heartbleed and that the case in under investigation by the RCMP.
Public access to file taxes online was restored on the weekend after it was blocked on April 9 due to the Heartbleed bug.
Furthermore, the CRA has decided to extend the deadline to file taxes from April 30th to May 5th, keeping the number of days the website was down in mind.
