OC Transpo notifying My Alerts subscribers of data breach
Posted Dec 4, 2020 10:33:00 PM.
The City of Ottawa is investigating a cyber security incident related to its OC Transpo My Alerts system.
It says OC Transpo My Alerts subscribers may have had their email addresses and passwords compromised, but adds that no financial or credit card information was affected.
The OC Transpo My Alerts system allows customers to subscribe for email or text message notifications about changes to transit service.
The city explains that the data breach has not affected the City of Ottawa's payment system, the OC Transpo network or the Presto Card system. None of those networks are linked to the OC Transpo Alerts system.
The city says it is investigating to determine how and when this information was accessed and have retained the services of a third-party expert in cyber security to re-examine the system and ensure the vulnerability that caused this issue is resolved.
It is also apologizing to all subscribers of the OC Transpo My Alerts system for this security breach.
The city is urging all subscribers who use the same password for multiple accounts to change their passwords. Since the passwords for the OC Transpo My Alerts system have been compromised, other private accounts that use the same password could be at risk.
The OC Transpo My Alerts log-in system has been temporarily closed. New registrations are not possible at this time.
Subscribers who have any questions can contact the OC Transpo Customer Service Centre at 613-741-4390.
Residents who have signed up for My Alerts will continue to receive them. OC Transpo’s other communication channels remain in operation.