Cineplex has confirmed that a service it uses was the victim of a cyberattack, but said that customer data was not accessed or compromised.
In a statement to Global News on Thursday, the company said it was recently made aware that a third-party supplier, FORTRA GoAnywhere MFT (Managed File Transfer), which Cineplex used for data transfer services, was the victim of a zero-day cyberattack, meaning an attack that takes advantage of a vulnerability that hasn’t been addressed yet.
“We immediately informed all Cineplex employees who may have been affected and took steps to protect and support them,” the company said in the statement.
“Cineplex operations were not impacted nor was any customer data accessed or compromised.”
Over the past few weeks, a number of global firms and government institutions have reported cybersecurity incidents linked to GoAnywhere, a vendor providing data transfer services and owned by Minnesota-based Fortra.
The City of Toronto also confirmed to Global News that it was affected by unauthorized access to city data through Fortra’s GoAnywhere service on March 23.
“The access is limited to files that were unable to be processed through the third party secure file transfer system,” the city said in a statement Friday.
“The City is actively investigating the details of the identified files.”
— with a file from Reuters