TransUnion has reported that the personal information of about 37,000 Canadians may have been compromised between June and July of this year. It said the data was accessed through the fraudulent use of one of its legitimate business consumer’s login credentials. In this case, it was the login for the leasing division of Canadian Western Bank.
The data at TransUnion was compromised between June 28 and July 11.
TransUnion learned of the breach back in August and has notified the customers affected. In a letter sent out to the affected customers, TransUnion said the compromised information could include a person’s name, date of birth, current and former address, information on credit and loan obligations, and credit repayment history. It said the data wouldn’t have included any account numbers, but would have shown a social insurance number if the number was used while accessing the file.