• Thanks for stopping by. Logging in to a registered account will remove all generic ads. Please reach out with any questions or concerns.

BGRS Hacked

Got an email telling me about the breach and a link to 12 months of credit monitoring by Equifax. Was watching credit report anyway through bank as I recently used BGRS for a move. Only took 2+ months for an official comms to individuals :)
 
MJP said:
Got an email telling me about the breach and a link to 12 months of credit monitoring by Equifax. Was watching credit report anyway through bank as I recently used BGRS for a move. Only took 2+ months for an official comms to individuals :)
Click to expand...
Is the email still there? I saw it in my inbox this morning, but don’t now.
 
MJP said:
Got an email telling me about the breach and a link to 12 months of credit monitoring by Equifax. Was watching credit report anyway through bank as I recently used BGRS for a move. Only took 2+ months for an official comms to individuals :)
Click to expand...
Same, just got it a week ago.
 
Is the email from a legitimate source or a phishing scam?
The version we received looks like a Canadian government letterhead form letter, but the email address was not from BGRS or a gc.ca email address.


9dd129ef-4957-4877-87aa-83a668ad209a.jpg

Of course, I may be too cautious on this particular example.
 
Not only are members / veterans concerned about BGRS being hacked, we can now add the hack to a portion of our PSHCP information.

According to a statement, MSH International, the sub-contractor to Canada Life that provides emergency travel and comprehensive coverage services to members of the Public Service Health Care Plan (PSHCP), was affected. The TBS was made aware of the incident.
Click to expand...

Reference:

Crowther, H. (2024, February 12). 'Cyber incident' affects health insurance provider for public servants: federal government. CTV News.
 
Strictly speaking, it's SIRVA, parent company of BGRS, that was hacked, not BGRS. The BGRS data was not breached, but data held by other companies under SIRVA who BGRS contracted with.
 
In the last 6 months I've had constant attempts to reset my personal emails, bank account logins and some other info that was on the BGRS side of things, and suspect they've also got things like my SSN.

Can't believe they are just giving a 1 year free monitoring, does anyone know if that comes with caveats that you give up the right to sue? They are being really opaque about the whole thing, so wouldn't be surprised if there is a class action against GoC, as they are ultimately responsible for their contractor (which they remind us every time we contract work, or the prime has an issue with their sub).

From what I understand, MSH hasn't been processing claims for months anyway, so not having portal access just means that they only have to ignore phone calls and emails.
 
Navy_Pete said:
From what I understand, MSH hasn't been processing claims for months anyway, so not having portal access just means that they only have to ignore phone calls and emails.
Click to expand...
So, if a CAF member ends up going into financial distress or bankruptcy bc their dependent gets sick and MSH isn’t processing claims, how hooped are they?

Because I’m sure there are some cases out there.
 
dimsum said:
So, if a CAF member ends up going into financial distress or bankruptcy bc their dependent gets sick and MSH isn’t processing claims, how hooped are they?

Because I’m sure there are some cases out there.
Click to expand...
There are at least a few public servants (article in French below), but sure there are more CAF members as well. Sure, you can get distress loans, but people working OUTCAN shouldn't be messing around with insurance claims for six months plus when they are talking $10-20k+.

Les déboires de Canada Vie poursuivent les fonctionnaires fédéraux à l’étranger

Don't worry though, TBS is doing quarterly meetings to work through the issue. Edit to add: for a group that loves to snipe and criticize, they seem to be almost universally inept when the actual project/contract management is on their plate. They love to brutalize departments over performance like that though.
 
dapaterson said:
Strictly speaking, it's SIRVA, parent company of BGRS, that was hacked, not BGRS. The BGRS data was not breached, but data held by other companies under SIRVA who BGRS contracted with.
Click to expand...
Isn’t that like saying Power Corp. is the problem, not Great Western Life or Canada Life? 😉
 
There is value in identifying where the failure occurred. BGRS has plenty of problems (a non-zero number of which are actually CAF requirements failures) but its system wasn't breached.
 
dapaterson said:
There is value in identifying where the failure occurred. BGRS has plenty of problems (a non-zero number of which are actually CAF requirements failures) but its system wasn't breached.
Click to expand...
You're right. Fail points in cyber breaches are quite precise. Where and how it happened and who was responsible matters.
 
You must log in or register to reply here.

Similar threads

daftandbarmy
2023 Layoff Tracker: Latest Meta Cuts Could Hit 4,000
2
Replies
31
Views
28K
mariomike
mariomike
daftandbarmy
21 runners die in extreme weather at China ultramarathon
Replies
1
Views
7K
Colin Parkinson
Colin Parkinson
daftandbarmy
‘Defence’ doesn’t fit the job of Canada’s military any more. Let’s create a Department of National Safety instead
2 3
Replies
46
Views
82K
foresterab
F
daftandbarmy
    • Like
The Management Myth
Replies
11
Views
17K
Brad Sallows
Brad Sallows
dimsum
MND Mandate Letter 2021
2
Replies
25
Views
39K
FJAG
FJAG
Back
Top