UPDATE: 19 year old arrested in theft of SINs

London man was picked up by the RCMP...

Stephen Arthuro Solis-Reyes
(photo from Mother Teresa Catholic Secondary School yearbook)

Police have charged a 19-year-old man from London, Ont., in connection with the loss of taxpayer data from the Canada Revenue Agency website.

Stephen Arthuro Solis-Reyes was arrested at his residence Tuesday and is charged with unauthorized use of a computer and mischief in relation to data, the RCMP said Wednesday.

A search of the residence resulted in the seizure of computer equipment.

The agency was forced to shut down its publicly accessible website Friday as the world learned about the Heartbleed computer bug, a previously undiscovered global Internet security vulnerability.

Other government computer sites were also temporarily taken down over the weekend.

On Monday, the agency said 900 social insurance numbers had been compromised.

The loss was detected Friday, but the agency delayed telling Canadians about it at the request of the RCMP.

The police said the delay allowed them to pursue their investigation through the weekend and helped track down a suspect.

``The RCMP treated this breach of security as a high priority case and mobilized the necessary resources to resolve the matter as quickly as possible,'' said Assistant Commissioner Gilles Michaud.

``Investigators from National Division, along with our counterparts in O Division, have been working tirelessly over the last four days analyzing data, following leads, conducting interviews, obtaining and executing legal authorizations and liaising with our partners.''

The Heartbleed bug is caused by a flaw in OpenSSL software, commonly used on the Internet to provide security and privacy. The bug has affected many global IT systems in both private- and public-sector organizations and has the potential to expose private data.

The revenue agency has said it will notify everyone involved in the security breach by registered letter and will offer access to credit-protection services.

Because of the five-day shutdown of its E-file and Netfile services, the revenue agency has effectively extended the tax filing deadline for the same length of time. Returns filed by May 5 will not incur penalties or interest.

Leave a comment:

showing all comments · Subscribe to comments
Comment Like
  • 10
  1. DO LO posted on 04/16/2014 02:34 PM
    Good for the RCMP catching the thief. Can One really trust the internet- online transactions?
  2. Greg posted on 04/16/2014 04:15 PM
    Make an example of this prick. 5 years + loss of all computer equipment and $10,000 fine.
    1. Frankie posted on 04/16/2014 08:02 PM
      @Greg This prick will be a multi-millionaire in 5yrs. And what about you, Greggie? The punishment for the mediocre life you lead should 15 years + loss of access to your parents home, a one way ticket to a rubber room at CAMH, and a $10,000 fine, no?
  3. Bettie posted on 04/16/2014 05:00 PM
    I'm surprised that the hack left a trail. Well done, CRA and RCMP, for catching the (alleged) creep.
  4. Lynne posted on 04/16/2014 06:55 PM
    I want to see that jerk pay us taxpayers back for what this theft has cost us & will cost us in the future.
    1. Frankie posted on 04/16/2014 07:55 PM
      @Lynne Don't be jealous of him Lynne! Sure, he'll be making millions of dollars a year working for Goldman Sachs once he's released from jail, but I believe your future will be just as bright too!! All you have to do is continue what you're already doing - trying to suck a promotion out of your boss's penis. So, you see, there's more than one way to skin a cat. Good on you.
    2. 123123 posted on 04/16/2014 09:42 PM
      @Lynne He used a widely known weakness to get through their systems, and based on the charges (basically misdemeanors) he had no intent to make any money off it. The fact is that at a certain point we need people like this, who don't do things maliciously, to keep the rcmp and our internet security agencies on their toes against the people who actually would actively want to sell this information. This act only succeeded because of a series of failures and its those failures we should be far more angry about.
  5. Frankie posted on 04/16/2014 07:50 PM
    This kid was smart enough to utilize an OpenSSL exploit but not smart enough to cover his tracks. Dummy. But his future is bright nevertheless. Once he's released from jail, he'd be a perfect candidate for Goldman Sachs. Those idiots at Goldman also use open source software for all their high frequency trading, et al. This kid will stand to make millions of dollars a yr. Good for him. Good for him.
  6. Neo posted on 04/16/2014 10:36 PM
    @Frankie. Very strong and multi-responsed opinion here which seems odd. Anyhow, I think most Canadians would not commend this hacker for breaking the law, no matter how harmless you consider it.
  7. Karl Burgin posted on 04/17/2014 10:01 AM
    1.> This is a kid, not a man.
    2.> Wow, I didn't think they would catch him that fast
    3.> Seriously think the government of Canada should hire him quick as a anti- hacking/exploit consultant. Better to have him on your side than against you. Canada always complain that they never have any talent, and/or they always head down south. Well, you have talent literally in your grasp. Best make good use of him.
    4.> We should be counting our lucky stars that its someone from within the country than from outside
showing all comments

Sign Up For Breaking News Alerts

Becoming a member only takes 60 seconds! Members get access to exclusive information and products that non-members do not, including concert ticket presales, trips, advance notice on upcoming entertainment events, movie screening passes, music giveaways and more!

Login with Facebook

Stay connected 24/7! Receive breaking news and programming alerts right to your inbox. CLICK HERE to sign-up.

Today's Poll

Toronto Police have revised its policy on carding but it will remain a tool for officers to use. Chief Bill Blair calls it an "essential means to preventing crime" Do you agree?

Voting is restricted to one vote every 24 hour(s) VoteResults

Top Stories