London Hydro Breach Exposes Account Data for Portion of 170,000 Ontario Customers
London Hydro confirmed a data breach affecting customer identifiers and account metadata but not financial or identity documents. The incident fits a pattern of utility targeting where billing details enable follow-on fraud. Independent notification and technical details remain absent.
Next steps include mandatory notification to Ontario’s Information and Privacy Commissioner, potential class-action scrutiny over adequacy of controls, and likely pressure on the utility to publish post-incident findings. Customers should monitor for account changes and treat any London Hydro-branded contact as suspect until verified through official channels.
SENTINEL: Within 60 days Canadian anti-fraud centers will log at least 500 London Hydro-themed phishing reports tied to the exposed contact data.
Sources (3)
- [1]SecurityWeek Coverage(https://www.securityweek.com/canadian-electricity-provider-london-hydro-discloses-data-breach/)
- [2]London Hydro Customer Notice(https://www.londonhydro.com/)
- [3]OPC Breach Database Entry(https://www.priv.gc.ca/en/opc-actions-and-decisions/breaches/)