Alert:
A nationwide postal strike or lockout may occur as early as November 3, 2004. Dealer Members must take steps to ensure that document delivery requirements prescribed under CIRO Rules continue to be met.
This Notice provides information to IIROC Dealer Members on cybersecurity threats arising from the COVID-19 pandemic, and includes some tips to help firms and its employees protect clients’ information and itself.
With the COVID-19 pandemic, there is new and changing information available every day. It is natural to want to search for news on websites, open external emails that provide updates on the topic and share these with colleagues and friends.
Unfortunately, with any crisis comes bad actors who will try to exploit the crisis. COVID-19 is no exception. For example, the World Health Organization (WHO) recently published an alert warning of scams and malicious emails claiming to contain information on how to protect yourself from the disease.
All text messages, emails, attachments, links and websites with coronavirus-themes should be treated with caution as they could contain malware or be part of a phishing attack designed to gain access to your network, personal information and assets.
Please continue to demonstrate care when accessing links or attachments in emails – even if the email is from a known sender. The following are general tips to take when receiving emails:
Again, we urge you to be cautious when viewing such emails, especially those that you are not expecting that are
If you are working from home, please keep your laptops, phones and other mobile devices (and access to them) safe and secure. Avoid using unsanctioned or unauthorized devices or accessing unsecure websites or wireless connections.
Your IT service provider should also ensure that your computer will continue to receive critical software security patches while you are working at home.
Please contact your cybersecurity teams or IT service provider with questions.
We have noted an increase in potential client account intrusions and encourage Dealer Members to remain vigilant. Dealer Members should ensure that controls or processes put in place to prevent or detect possible account intrusions are operational and working as expected. Such tools may include:
As a reminder, IIROC expects any Dealer Member that has experienced problems with account intrusions to advise IIROC of the activity. This is important for IIROC to assess any potential harm to clients and/or market integrity.
Further information and resources on managing cybersecurity threats, including guides and webinars, are available on IIROC’s cybersecurity site.