The Canadian Investment Regulatory Organization (CIRO) reported that it identified a cybersecurity threat and proactively shut down some of its systems as a precaution while an investigation is conducted. Preliminary investigative results indicate that some personal information relating to member firms and their registered employees was affected. The threat was identified on August 11, 2025, and CIRO stated that critical functions remained available throughout, including real-time equity market surveillance operations, which continue as normal with no active threat in its systems. The investigation is ongoing with support from external cybersecurity and legal experts and law enforcement. CIRO plans to determine which individual registrants may have been affected, notify them directly, and provide risk mitigation services; it added that Canadians’ investments are not at risk and that it only receives sample investor information through member compliance functions. CIRO said it will provide more information in due course and will notify any investors if the investigation finds their information was affected, along with risk mitigation services.
Canadian Investment Regulatory Organization 2025-08-18
Canadian Investment Regulatory Organization investigates cybersecurity threat after personal information of member firms and registered employees was affected
The Canadian Investment Regulatory Organization (CIRO) identified a cybersecurity threat, prompting a precautionary shutdown of some systems during an investigation. Preliminary findings show some personal information of member firms and registered employees was affected, though critical functions like real-time equity market surveillance remain operational. CIRO assures Canadians' investments are not at risk and plans to notify affected individuals and provide risk mitigation services.