Rogers and Fido Hit by Data Breach Exposing Customer Information Rogers Communications and its subsidiary Fido disclosed a data breach on Friday after detecting unauthorized access to customer information through internal security monitoring. The compromised data includes names, contact details, account numbers, and language preferences, though the company confirmed that sensitive information such as social insurance numbers, dates of birth, passwords, and financial details remained secure. In a statement to The Globe and Mail, Rogers spokesperson Zac Carreiro acknowledged the incident, stating that immediate action was taken to investigate and bolster protections. The company is still determining the full scope of the breach and has not yet disclosed the number of affected customers or how long the unauthorized access persisted. Notably, Rogers did not address whether the breach was connected to recent IT layoffs or how the exposed account numbers could be exploited in future phishing attacks. The incident follows similar breaches at other Canadian telecoms, including Freedom Mobile and Telus Digital. Rogers continues its investigation and plans to notify impacted customers.

Ransomware Surge in January 2026: Shifting Targets and Emerging Threats January 2026 marked a sharp rise in ransomware activity, with 711 attacks recorded down slightly from December 2025’s 783 but 33% higher than January 2025 and well above the 2025 monthly average of 620. While attacks on manufacturers plateaued, finance and tech sectors became prime targets, seeing 24% and 12% increases, respectively. ### Key Trends and Impact - Geographic Shifts: The UK saw an 83% surge in attacks (42 in January vs. 23 in December), while the US declined by 8% (329 attacks) and Germany dropped 38%. Canada and Australia also experienced increases. - New Threat Actor: A group called 0APT claimed over 80 attacks, but most were unverified and later removed from tracking databases. - Data Theft: Over 104 TB of data was stolen, with Sinobi leading in total volume (13.6 TB) and Everest claiming the largest single breach (1.4 TB from Iron Mountain). ### Sector Breakdown - Healthcare: Attacks fell 27% (36 vs. 49 in December), but confirmed incidents rose. Notable breaches included Mt. Spokane Pediatrics (LockBit) and Pecan Tree Dental (Sinobi), exposing 13,300 records. - Government: Attacks remained steady (31 vs. 30 in December), with 10 confirmed. The Gentlemen targeted Spain’s Ayuntamiento de Beniel and South Africa’s Witzenberg Municipality, while Qilin hit Tulsa International Airport. - Education: Attacks dropped 45% (16 vs. 29), with no confirmed incidents. However, delayed disclosures revealed breaches at Clackamas Community College (Medusa) and Trocaire College (INC). - Businesses: Attacks decreased 7%, but finance and tech saw spikes. The Gentlemen breached Rogers Capital Credit (Mauritius), exposing banking data, while Rhysida demanded $392,000 from Elabs AG (Germany). ### Top Ransomware Gangs - Qilin led with 108 attacks (6 confirmed), followed by Clop (90, none confirmed) and Akira (72, 3 confirmed). - The Gentlemen had the highest confirmation rate (5 of 48 claims), targeting businesses and governments. ### Notable Incidents - Iron Mountain (US): Everest claimed 1.4 TB stolen, though the breach was limited to market materials. - AZ Monica (Belgium): A ransomware attack forced operation cancellations and patient transfers via the Red Cross. - Sanxenxo (Spain): Hackers demanded $5,000, which was refused. The data underscores evolving ransomware tactics, with gangs shifting focus to high-value sectors and leveraging delayed disclosures to obscure attack timelines.