Tens of thousands of taxpayer accounts hacked as CRA repeatedly paid out millions in bogus refunds
CBC
At the height of this year's tax season, the Canada Revenue Agency discovered that hackers had obtained confidential data used by one of the country's largest tax preparation firms, H&R Block Canada.
Imposters used the company's confidential credentials to get unauthorized access into hundreds of Canadians' personal CRA accounts, change direct deposit information, submit false returns and pocket more than $6 million in bogus refunds from the public purse, an investigation by CBC's The Fifth Estate and Radio-Canada has found.
In one case, the hackers filed a return with a legitimate postal code, but a fake address on a non-existent Tomato Street.
"Obviously the door is open and some people are infiltrating the system," André Lareau, an associate tax professor at Laval University in Quebec City, said in an interview. "But the CRA does not seem to have found the key to lock the door."
According to sources, the crisis prompted the CRA to contact the office of Revenue Minister Marie-Claude Bibeau.
The agency prepared media lines to respond to inquiries should there be questions about the breach of H&R Block data and why the agency paid out millions to scammers.
In the end, the public was never alerted to the scheme.
Bibeau declined The Fifth Estate/Radio-Canada's request for an interview.
In a statement, H&R Block said there is no evidence the breach came from it.
The tax firm said a "comprehensive internal investigation" concluded none of its "data, systems, software and security" had been compromised. H&R Block said it is not aware that the Canadian taxpayers impacted by the breach were any of its own clients.
According to sources, the CRA failed to identify the hackers, but ruled out the possibility of a breach of its own systems or insider involvement. Ultimately, who hacked that data and where from remains unknown.
Both the revenue minister and CRA's media relations office did not respond to questions about the H&R Block data breach.
The Fifth Estate and Radio-Canada are not identifying the sources because they are not authorized to speak publicly.
The investigation by The Fifth Estate and Radio-Canada has found that the H&R Block data breach is just one example of many that are overwhelming the CRA, as auditors and investigators worry the public might lose trust in the agency tasked with safeguarding its taxpayer dollars and personal information.
The amount of money it takes for people to earn a living wage has increased across the province, according to a new report from the Canadian Centre for Policy Alternatives (CCPA).
The new owner of Ontario steelmaker Stelco says his company "will not disappoint the people of Hamilton and Nanticoke," where the business's major facilities are based.
A Winnipegger is warning others about an intricate scam she says she almost fell for.
Fort William First Nation is opposing a planned redevelopment of the Ontario Power Generation's (OPG) 117 year old Kakabeka Falls Generating Station, which is located in their traditional territory.
A building that sits at the corner of Sussex Street and Brunswick Avenue has had many lives over the last century — being a church, a school and offices. Now it's set to become housing, at a time when the city sorely needs it.
A Waterloo, Ont., elementary school principal will be sentenced in the new year after pleading guilty to child sexual exploitation charges following a joint investigation that involved the London, Toronto and Waterloo police services.
Students at UPEI have let their student union know what they want from the province this fiscal year, and those priorities are reflected in a 2024-2025 advocacy document brought to the legislature on Wednesday.
Larger communities in the N.W.T. will soon see a boost in their territorial funding to maintain infrastructure and deliver services — like water and waste management — but the increase still falls short of what communities need.
The toxic drug crisis has taken more than 47,000 lives in Canada since 2016 and the synthetic opioid fentanyl has become a household name. But now, what's believed to be an even more potent class of synthetic drugs is showing up in drug busts across the country: nitazenes.
The Liberal government and the NDP have agreed to introduce a two-month GST vacation on certain items before the holiday season, Radio-Canada has learned.
Veterinarians are warning Londoners to make sure their dogs are vaccinated and keeping clean after a deadly virus outbreak was declared in London this week.