Wealthsimple recently experienced a cybersecurity breach that exposed sensitive client information, including Social Insurance Numbers and account numbers. The Toronto-based online bank and investment firm identified the breach as originating from a compromised software package provided by a trusted third-party vendor. The issue was detected on August 30 and was quickly contained within a few hours. The company assured that client accounts remain secure, as no passwords were compromised and no funds were accessed or stolen. However, exposed data may include contact details, government ID, account numbers, IP addresses, dates of birth, and Social Insurance Numbers. Wealthsimple confirmed that fewer than one percent of its clients were affected and that all impacted users were notified directly by email. Those affected are being offered two years of free credit monitoring, dark web surveillance, identity theft protection, and insurance. In response to the incident, Wealthsimple has strengthened its internal systems and encourages all clients to take proactive steps to protect their information online.
Was Wealthsimple’s client data compromised in a security breach?
