Teenager arrested in connection with Heartbleed

The Canada Revenue Agency reported 900 taxpayers' data stolen

Tags: CanadaCyber crime
  • E-Mail
Teenager arrested in connection with Heartbleed Security experts warn that more attacks could be revealed soon, as firms and governments work to determine whether or not their systems are vulnerable.
By  Helen Gaskell Published  April 17, 2014

A Canadian teenager has become the first to be arrested in relation to the Heartbleed bug, online reports say.

Stephen Arthuro Solis-Reyes is charged with hacking into the Canada Revenue Agency's website to steal taxpayers' data, according to the National Division of the Royal Canadian Mounted Police.

"It is believed that [Mr] Solis-Reyes was able to extract private information held by CRA by exploiting the vulnerability known as the Heartbleed bug," the RCMP said in a statement.

The RCMP, which has been investigating the breach for four days, charged Mr Solis-Reyes with "unauthorised use of a computer" and "mischief in relation to data".

The CRA said on Monday that the vulnerability had been used to steal the social insurance numbers of about 900 people. After discovering the attack, the agency temporarily halted online filing of tax returns. Social insurance numbers are required to work or get government benefits in Canada.

The RCMP arrested Solis-Reyes on Tuesday after four days of investigation. It searched his residence and seized computer equipment, and the investigation continues, the agency said in a press release. Solis-Reyes is scheduled to appear in court in Ottawa on 17 July.

Security experts warn that more attacks could be revealed soon, as firms and governments work to determine whether or not their systems are vulnerable.

Add a Comment

Your display name This field is mandatory

Your e-mail address This field is mandatory (Your e-mail address won't be published)

Security code