What advisors need to tell clients about the CIRO breach - The Globe and Mail

Following a data breach at the Canadian Investment Regulatory Organization (CIRO), advisors must inform clients about exposed personal information like dates of birth, SINs, and account numbers, and prepare for impersonation scams. Clients should be advised to not authenticate inbound callers and to verify requests by calling back using trusted numbers, while advisors should focus on reassuring clients about security measures and designing systems to limit damage.