Park’N Fly is warning {that a} information breach uncovered the private and account info of 1 million clients in Canada after hackers breached its community.
The risk actors breached the Park’N Fly networks by way of stolen VPN credentials in mid-July and stole information from the corporate. On August 1, the corporate decided that buyer info was additionally accessed throughout the assault.
“Park’N Fly discovered that an unauthorized third party accessed our network through remote VPN access,” reads the discover despatched to clients and shared with BleepingComputer.
“Based on our investigation, we determined that the unauthorized activity occurred between July 11 and July 13, 2024. On August 1, 2024, we determined that some of your personal information was likely affected by the incident.”
Supply: BleepingComputer
Park’N Fly is a big supplier of off-airport parking companies in Canada, providing vacationers a handy place to park their automobiles when flying out of main airports throughout the nation.
The agency, which additionally gives shuttle, automobile washing, and oil change companies, operates amenities situated close to airports in Toronto, Vancouver, Montreal, Edmonton, and Ottawa.
The data that has been uncovered on this contains full names, electronic mail addresses, bodily addresses, aeroplan quantity, and CAA numbers.
Park’N Fly says that no monetary or cost card info has been uncovered.
A spokesperson for the corporate advised BleepingComputer that roughly “1 million customer files were accessed,” noting that account passwords stay safe.
Impacted techniques have been absolutely restored inside 5 days, said the spokesperson, including that they’re implementing further safety measures to safeguard person info sooner or later.
“While we deeply regret any concern this incident may have caused, we want to reassure our valued customers and partners that we are taking all necessary steps to safeguard their information,” said Park’N Fly’s CEO, Carlo Marrello.
“We remain committed to transparency and will continue to prioritize the integrity of our systems as we navigate this situation.”
Clients who obtained letters took to Reddit to vent their frustration by yet one more information breach impacting them, questioning the established observe of firms holding buyer information round for lengthy after the service has been provided.
Some famous that the leak of Aeroplan numbers may simply result in account hijacks, advising password resets for these collaborating in Air Canada’s frequent-flyer program.
Park’N Fly warns impacted clients to stay vigilant and be careful for phishing makes an attempt from unknown contacts, both by way of electronic mail or telephone calls.
H/T Gerry Corcoran
