Park’N Fly Alerts 1 Million Clients About Massive Data Breach

Picture this: you’re flying out of a major Canadian airport, and you need a place to park your car while you’re away. So, you choose Park’N Fly, a well-known provider of off-airport parking services. They offer convenient facilities near airports in Toronto, Vancouver, Montreal, Edmonton, and Ottawa, along with shuttle, car washing, and oil change services. Sounds great, right?

Unfortunately, we have some bad news: Park’N Fly experienced a data breach that exposed the personal and account information of 1 million customers in Canada. Hackers broke into the company’s network through stolen VPN credentials in mid-July, and by August 1st, it was clear that customer information had been accessed during the attack.

The Breach: What Happened?

In a notice sent to customers, Park’N Fly revealed that an unauthorized third party accessed their network through remote VPN access. The unauthorized activity occurred between July 11 and July 13, 2024, and on August 1st, the company determined that some customer information was likely affected by the incident.

What Information Was Exposed?

The information exposed in the breach includes full names, email addresses, physical addresses, Aeroplan numbers, and CAA numbers. Thankfully, no financial or payment card information was exposed.

A spokesperson for Park’N Fly told us that approximately “1 million customer files were accessed,” but assured us that account passwords remain secure. Impacted systems were fully restored within five days, and the company is implementing additional security measures to safeguard user information in the future.

What’s Being Done About It?

Park’N Fly’s CEO, Carlo Marrello, expressed regret for the incident and reassured customers that they are taking all necessary steps to safeguard their information. “We remain committed to transparency and will continue to prioritize the integrity of our systems as we navigate this situation,” Marrello stated.

Customers who received letters about the breach took to Reddit to vent their frustration, questioning why companies keep customer data for so long after services have been provided. Some users also pointed out that the exposure of Aeroplan numbers could lead to account hijacks and recommended password resets for those participating in Air Canada’s frequent-flyer program.

Stay Vigilant: Protect Yourself from Phishing Attempts

Park’N Fly is warning impacted customers to remain vigilant and watch out for phishing attempts from unknown contacts, either via email or phone calls. If you’ve used Park’N Fly’s services and are concerned about the breach, take action now by resetting your Aeroplan account password and keeping an eye out for suspicious communications.

Don’t Be a Victim: Keep Learning and Stay Informed

The Park’N Fly data breach serves as a reminder that even well-established companies can fall victim to cyber attacks. It’s essential for all of us to stay informed about cybersecurity threats and learn how to protect ourselves online. We’re here to help you navigate the ever-changing landscape of online security, so keep coming back to learn more and stay ahead of the game. Together, we can build a safer digital world.