Niverville

FAQ

Q&A

 

  1. What happened?

 

Niverville Credit Union was recently impacted by a cybersecurity incident experienced by one of our managed services providers, which supports us with a range of information technology and related services.

We operate a range of IT safeguards and controls, which helped us identify a systems issue to our managed service provider on June 8, 2022.

Later on June 8, the managed services provider notified us that they had experienced a cybersecurity incident. They confirmed that they took immediate action to block the incident to limit the impact on their clients and began investigating to assess what information may have been compromised.

As a precaution, we launched an investigation into this incident, which determined that unknown individuals may have gained unauthorized access to some information. As part of this process, we have also been evaluating and implementing additional security measures to further protect your information.

Out of an abundance of caution, we want to make our members aware that some personal information may have been accessed by these unknown individuals as a result of the incident. However, please be assured that there is no evidence that information was taken or misused due to the incident at this time.

 

  1. When did this incident occur?

 

Niverville Credit Union operates a range of IT safeguards and controls, which helped us first identify a systems issue to our managed services provider on June 8, 2022  

Later on June 8, the managed services provider notified us that they had experienced a cybersecurity incident. They confirmed that they took immediate action to block the incident to limit the impact on their clients and began investigating to assess what information may have been compromised.

 

  1. What type of incident was this?

 

It was a cybersecurity incident.

 

  1. Were you hacked / what was the impact of the incident?

 

It was a cybersecurity incident, where member information may have been accessed.

As a precautionary measure, we have informed our members that some of their personal information may have been accessed during the incident. This may include name, account number, and balance history.  Please note that the impacted information categories may vary from member to member, and we are unable to confirm the specific information for each individual member.

At present, there is no evidence that any personal information was taken or misused because of this incident.

 

  1. How did you respond to the incident?

 

We immediately initiated an investigation. As part of this process, we have also been evaluating and implementing additional security measures to further protect your information. We have alerted law enforcement and have engaged leading cyber security experts to support the investigation and our response. At present, there is no evidence that any personal information was taken or misused because of this incident.

 

  1. What does it mean for Niverville Credit Union’s operations?

 

All our operations are running as usual.

 

  1. What is my risk?

 

We believe the risk is low for the following reasons:

 

  • We have been working with world-class cybersecurity experts, who have undertaken a thorough investigation.
  • No member information was taken or misused as a result of this incident.
  • As a precautionary measure, we are providing complimentary identity theft and credit monitoring solutions free of charge for 24 months, to those affected. To access this solution, please contact privacy@nivervillecu.mb.ca

 

  1. Was the banking system attacked? Was the banking system affected by the cyber incident?

 

No, the banking system remained secure throughout. All banking functions were available, including online banking for members.

 

  1. I am looking for more details on the incident – how can I find out more?

 

To find out more information,or for member enquiries, please contact info@nivervillecu.mb.ca