Subscribe to industry newsletters

Search jobs

Canada shuts tax filing website over 'Heartbleed' bug

OTTAWA, CANADA: Canada's tax agency shut its website on Wednesday (9 April) after warning that encrypted taxpayer data could be vulnerable to the "Heartbleed" bug.
The Heartbleed bug has forced Canada's tax agency to temporarily shut down. Image:
The Heartbleed bug has forced Canada's tax agency to temporarily shut down. Image: Heartbleed
The Canada Revenue Agency (CRA) said the decision, which comes only three weeks before the annual income tax filing deadline, was taken as a "preventive" measure.

"The CRA has temporarily shut down public access to our online services to safeguard the integrity of the information we hold," it said.

Later the CRA said it was "working on a remedy" and hoped to have its website back up and running in three to four days.

Canadian taxpayers are expected to file their tax returns for 2013 with the Canadian Revenue Agency by 30 April.

Missing the filing deadline usually results in stiff penalties, but the CRA said "consideration" would be given to anyone affected by the website service interruption.

The agency last week said in a Twitter message that it was processing 1,763 online returns per minute - a seasonal high.

Millions potentially affected


As of 24 March, 6,787,284 tax returns had been filed with the government agency, it said. Of those, 83.5% were filed online.

There are an estimated 22m taxpayers in Canada.

The freshly-discovered flaw in online-data scrambling software OpenSSL allows hackers to eavesdrop on online communications, steal data, impersonate websites and unlock encrypted data.

OpenSSL is commonly used to protect passwords, credit card numbers and other data sent via the Internet.

More than half of websites use the software, but not all versions have the same vulnerability, according to Heartbleed.

Cyber security firm Fox-It estimates that the vulnerability has existed for about two years, since the version of OpenSSL at issue was released.

Computer security specialists, website masters and others began fretting about the bug this week after several reports of hacking.

The CRA said it would investigate any theft and abuse of taxpayer information resulting from security breaches.

Source: AFP via I-Net Bridge


SOURCE

I-Net Bridge
For more than two decades, I-Net Bridge has been one of South Africa’s preferred electronic providers of innovative solutions, data of the highest calibre, reliable platforms and excellent supporting systems. Our products include workstations, web applications and data feeds packaged with in-depth news and powerful analytical tools empowering clients to make meaningful decisions.

We pride ourselves on our wide variety of in-house skills, encompassing multiple platforms and applications. These skills enable us to not only function as a first class facility, but also design, implement and support all our client needs at a level that confirms I-Net Bridge a leader in its field.
Go to: http://www.inet.co.za

Let's do Biz