Canada’s leading provider of laboratory diagnostics and testing services, LifeLabs revealed that they have paid hackers to retrieve data that were stolen during a security breach last month.
The company made the payment to the hackers in collaboration with experts familiar with cyber-attacks and negotiations with cyber criminals.
It is however not known about the amount the company has paid to recover its data.
As stated in the documents filed with the Office of the Information and Privacy Commissioner of Ontario and the Office of the Information and Privacy Commissioner for British Columbia, the security breach happened last month, around November 1.
According to LifeLabs, the hackers breached its systems, extracted customer data, and then demanded a ransom to give the company back its data.
The hackers got the information of more than 15 million customers. The data stolen by the attackers were dated 2016 and earlier, and it included names, home addresses, email addresses, usernames, passwords and health card numbers.
The medical test results of around 85,000 customers were also included.
The company is currently working with law enforcement and conducting an investigation about the hack. They also assured that they have patched their system for the entry point which the hackers used to breach its servers.
Charles Brown, the President and CEO of LifeLabs stated that their cyber security firms have advised that the risk to their customers regarding this cyber-attack is low and that any public disclosure of customer data were not to be found.
Any additional information regarding the hack is available in a security notice on LifeLabs’ website.