Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Canadian Investment Regulatory Organization (CIRO) hit by cyberattack

Incident
First reported
Last updated
Happening score
H score 12
1 unique sources, 1 articles

Summary

Hide ▲

The Canadian Investment Regulatory Organization (CIRO) confirmed a data breach that affects about 750,000 Canadian investors, making the incident a large-scale exposure of sensitive personal information. CIRO said some data was exfiltrated from its systems, while login credentials and security questions were not affected. The organization completed its forensic review on January 14 and said it has found no evidence of misuse or dark-web publication. Affected investors are being offered two years of credit monitoring and identity theft protection.

Related Happenings

Monroe University stolen-data breach affecting 320,973 people

Data Leak
First: 14.01.2026 10:57 Last: 14.01.2026 10:57 Sources 1

About this happening: The **Monroe University data leak** now has a confirmed scope of **320,973 affected individuals**, raising the risk of identity theft and account abuse. Attackers accessed the uni...

Open Happening

Monroe University hit by data theft breach

Incident
First: 14.01.2026 10:57 Last: 14.01.2026 10:57 Sources 1

About this happening: **Monroe University** disclosed a **cyberattack breach** that left attackers on its network for **two weeks**, confirming a sustained compromise of a named institution. The unauth...

Open Happening

Endesa and Energía XXI customer data leak after unauthorized access

Data Leak
First: 12.01.2026 17:57 Last: 12.01.2026 17:57 Sources 1

About this happening: **Endesa** and **Energía XXI** disclosed **unauthorized access** to their commercial platform that exposed **customer contract data** tied to energy accounts. The exposed records...

Open Happening

Timeline

  1. 18.01.2026 17:17 1 articles · 4mo ago

    CIRO detects cybersecurity threat and isolates non-critical systems

    Detection Ioc Update

    CIRO identified a cybersecurity threat on its systems and responded by shutting down certain non-critical systems while launching an investigation. Preliminary findings indicated that some personal information of member firms and their registered employees had been exfiltrated.

    Show sources
    Open in new tab
  2. 18.01.2026 17:17 1 articles · 4mo ago

    CIRO discloses the breach it suffered last year

    Initial Disclosure

    CIRO disclosed the incident after identifying the threat, confirming that the organization had suffered a data breach last year. The disclosure set the public timeline for the investigation into compromised personal information.

    Show sources
    Open in new tab
  3. 18.01.2026 17:17 1 articles · 4mo ago

    CIRO completes forensic investigation and assesses stolen data

    Technical Analysis Update

    CIRO completed an extensive forensic investigation and concluded that some personal information had been exfiltrated from its systems. The organization said it spent over 9,000 hours investigating the incident and found no evidence that the stolen data had been misused or published on the dark web.

    Show sources
    Open in new tab
  4. 18.01.2026 17:17 2 articles · 4mo ago

    CIRO reports broad investor impact and offers credit monitoring

    Victim Impact Update

    CIRO said about 750,000 Canadian investors tied to current and former members were affected, and the compromised data may include dates of birth, phone numbers, annual income, social insurance numbers, government-issued ID numbers, investment account numbers, and account statements. CIRO also said login credentials and account security questions were not affected because it does not store that information on its systems, and it is offering affected investors a free two-year credit monitoring and identity theft protection service after finding no evidence of misuse or dark-web publication.

    Show sources
    Open in new tab