The Canadian Investment Regulatory Organization (CIRO) has provided an update on a sophisticated phishing attack initially disclosed in August 2025. This breach impacted approximately 750,000 Canadian investors.
The compromised data includes personal information such as dates of birth, social insurance numbers, annual income, phone numbers, and investment account details, but excludes account login credentials like passwords and PINs.
CIRO has confirmed that the breach originated from a phishing attack and has since secured its systems. While there is no current evidence of data misuse or dark web exposure, CIRO is contacting affected individuals directly.
As a precaution, the organization is offering two years of complimentary credit monitoring and identity theft protection to those impacted. CIRO emphasizes its commitment to transparency and strengthening cybersecurity defenses to prevent future incidents.