A London Drugs cyber incident could damage data

London Drugs is now confirming that some of the company's data may have been compromised in a cyber security incident that closed stores in western Canada a few weeks ago.

The company first reported the incident on April 28, forcing locations to close for several days.

“When we discovered the incident, we implemented countermeasures to protect the network and data from further malicious activity and engaged third-party cybersecurity experts to assist in isolation, recovery, recovery and forensic investigation to determine the cause and extent of the incident. London Drugs said in a statement on May 18. He noted that law enforcement and privacy commissioners have also been notified.

The company reiterates that there are no indications that its patient or customer databases have been compromised.

“While our key employee databases appear to have been intact, through our ongoing forensic examination we have found evidence that some corporate files may have been compromised, some of which contain personal employee information,” the statement said.

“At this time, we are unable to provide specific details about the nature or extent of employee personal information that may have been affected as we are still reviewing the affected data.”

London Drugs says it has notified all employees “as a precaution” and that it will also offer them “24 months of free credit monitoring and identity theft protection services, regardless of whether any of their data has been breached or breached. no”.

“A review of the affected data has begun, but due to the unreadable file structures of many files and the extent of the impact, we expect it will take time to complete. Once we have completed our review, we will contact any affected employees directly to let them know what personal information was breached,” London Drugs continued.