No warning from government that personal data was hacked: Sask. Liquor and Gaming suppliers

Suppliers whose data was taken in a Christmas Day hack of the Saskatchewan Liquor and Gaming Authority's computer systems say the government never informed them that their personal data, including credit card numbers, had been taken.

A man identifying himself as "Jason Walmart" called CBC recently and said he is part of the organization that hacked the SLGA's systems. 

"We downloaded all the private and sensitive information," he told CBC in a recorded phone call. "We got one-and-a-half terabytes of their confidential data."

Following the phone call, someone using the name Dr. Clement Goyette sent CBC a link to an "evidence pack" of files, which contained more than 500 megabytes of what appear to be internal SLGA documents.

They include bank records, budgets, contracts, employee data and supplier agreements. 

The self-proclaimed hacker said he contacted CBC because the province was refusing to negotiate. 

"We tried to reach the company to provide them this information and to start negotiations. They said they don't care about the problem," the person said. 

One of the documents provided by the hackers was a credit card authorization form for Manmohan Minhas, the owner of Minhas Sask, which bills itself as the province's largest distillery, winery and brewery. 

The document included Minhas's corporate credit card number, along with its expiry date and security code, and Minhas's signature. The hackers also provided a form that Minhas Sask had submitted to the federal government. 

CBC called Minhas to alert him that his data appeared to have been taken in the SLGA hack. He said SLGA never informed him about it.

"Oh boy," said Minhas. "This is the first time I'm ever hearing about it." 

He said it made him "very concerned."

"I've got to go and check out my credit cards for those months." 

The hack happened more than three months ago.