Customers of Winnipeg's Thermea spa alarmed after notification of …

The parent company of a popular luxury spa in Winnipeg is in hot water after a data breach opened the door for hackers to access a variety of private information from customers. This week, customers who purchased gift certificates from Thermea spa between early November and late February were told in an email that their credit card information may have been compromised, alongside their full names, phone numbers and email and street addresses. Groupe Nordik, the parent company of the spa, said that they learned of the breach in late February, shut down the gift certificate system and hired a third-party firm to investigate.

“We have since enhanced security measures on all Groupe Nordik systems, including the gift certificate system, and will continue to work with the cyber security firm to maximize the protection of our clients’ data,” the email said. Gift certificates that have not been redeemed are still valid, Groupe Nordik said. The appropriate authorities have been notified of the breach and affected customers were encouraged to keep an eye out for any suspicious activity.

Unencrypted credit card info

“What the email didn’t include, though, was any guidance around the risk of identity theft that they have now incurred for me,” John Robins told Radio-Canada in a Wednesday interview.

Robins purchased a Thermea gift certificate with his credit card at a Polo Park kiosk around Christmastime, he said. He has submitted a complaint about the breach to the Office of the Privacy Commissioner. He’s not aware of any fraudulent charges on his credit card, but he’s going through his records again.

Robins was surprised to learn that Thermea saved his credit card information for any amount of time. “I certainly did not think that I was putting myself in that level of risk when I made a simple point-of-sale transaction with Therma.” Gautam Srivastava, a Brandon University professor of computer science who specializes in cybersecurity, said it’s fairly normal for companies to keep the amount of customer information that Thermea did for situations involving marketing and repeat customers.

He said these kinds of data breaches are happening more often, since businesses are prioritizing ease of use.  While paying by the tap of a credit card or phone is speedy and efficient, those practices are not always compatible with good security, Srivastava said. “If you’re looking to encrypt and then decrypt information, there’s time lags there, and so a lot of systems that are built for ease of use find those sorts of things compromised.”

He said Thermea isn’t entirely to blame for the data breach, as malicious attackers often test a number of companies within a specific vicinity in search of system weaknesses. Thermea is a well-loved establishment in Winnipeg, he said, so they won’t necessarily lose all of their business because of the data breach. There are steps Groupe Nordik can take to win back customers, such as keeping their security measures updated and ensuring customers that their information is safe, he said.

Consumers can protect themselves by changing the pins of their bank and credit cards periodically and using strong passwords for their emails, as well as multi-factor authentication or biometric verifications such as fingerprint technology. But at the end of the day, it’s a matter of trust, Srivastava said. “Their brand is going to take a hit for a little bit, but they can take steps in the future starting now to kind of win back some of that trust,” he said.

“When trust is broken in anything, it takes time to win back that trust, and sometimes you never do.” In a statement to Radio-Canada, Groupe Nordik said they hired a third-party cybersecurity firm to investigate the breach and will continue to work with them in the future. “We have since enhanced security measures on all Groupe Nordik systems, including the gift certificate system, and will continue to work with the cyber security firm to maximize the protection of our clients’ data,” the statement said.

Robins said the breach came at an unfortunate time for him and his family, as they lost their house to a fire in January 2022. He said Thermea is a bit of a local institution for Winnipeg and surrounding areas. “I’ve been there many times — really enjoy their service. It’s a real treat to be able to go to a spa.”

But Robins said Thermea will have to win his business back.

“I think giving an email notification that a breach happened is a good first step and I’m grateful for that credit where credit is due,” he said.

“But frankly given the — in my estimation — very weak data practices that this company has been engaged in, I really don’t want to go back to Thermea and jeopardize my data again with that firm.”

Tags:

bareminerals listed on couponmatrix.ukcoal-grill-and-bar listed on couponmatrix.ukdoggie-solutions listed on couponmatrix.ukgold-standard-nutrition listed on couponmatrix.ukhuawei listed on couponmatrix.ukpatpat listed on couponmatrix.uk
bareminerals listed on couponmatrix.ukEnsure your beauty buys are as clean as your conscience with the bareMinerals natural makeup collection. Grab a bareMinerals discount code from us to give your makeup bag a boost with mineral foundations that are actually good for your skin or hydrating lipsticks for a beautiful, kissable pout. Don’t forget to browse the bareMinerals skincare section for soothing serums, moisturising masks, and a host of lotions and potions, tailored to fix all those common skin complaints. With a range that’s cruelty-free, plenty of options for vegans and a transparent supply chain, bareMinerals proves that beauty can be so much more than skin deep.
coal-grill-and-bar listed on couponmatrix.ukHead on down to your local Coal Grill & Bar and get your BBQ fill - everything from jerk chicken wings to mouthwatering burgers and sumptuous steaks are just begging to be eaten. Be sure to bring one of our Coal vouchers with you to knock a healthy chunk off your bill so you can eat better for less! Bring your family and friends out for dinner and treat them to something special with a little help from us.
doggie-solutions listed on couponmatrix.ukFurry friends can be spoiled rotten with toys, beds, training aids and accessories galore from the pages of Doggie Solutions. Owners can use the Doggie Solutions discount codes found on Groupon to take the bite out of the total when they reach the checkout. Trading since 2003, Doggie Solutions offer a myriad of items for both canines and felines, with international shipping available for a long list of countries. Products available include training devices, crates and cages, collars, leads, food and supplements, and a whole host of accessories that will help you bond with your animal. Whether you’re training a puppy, looking to treat your pooch to a new toy, or you need a bed for your cat that isn’t your own, use a Doggie Solutions promo code to get what you need for less.
gold-standard-nutrition listed on couponmatrix.ukGSN is affordable, loaded with protein and nutrients, and it reduces meal prep down to a measly six minutes. If you care about fitness but often find yourself short of time, this one’s a no brainer! Whether it’s the Gold Standard Nutrition Pots O Gold or the convenient protein bars for nutrition on-the-go, we’ll help you save money at GSN with a Gold Standard Nutrition discount code to reduce the order total. Try out these high-protein meals and snacks for a well-balanced diet that unlocks more free time – the bundle discounts could save you a fortune!
huawei listed on couponmatrix.ukThe new kid on the block, Huawei already stands side-by-side with the tech giants as one of the go-to providers of premium communication technology. Producing some of the smartest and fastest performing phones, tablets, laptops and watches on the market, with the latest Huawei discount code you’ll be hard pressed to find a better price on a finer product. If you like the sound of 5G connectivity, unparalleled processing speed and immaculately rendered visuals, look to the future with Huawei.
patpat listed on couponmatrix.ukKeeping up with your child’s wardrobe is an easy and affordable process with PatPat, the go-to supplier of kids fashion from babies up to ten years old. Offering everything from matching outfits for mother and child to eco-friendly cloth diapers, you’ll have more than enough items to secure savings on with the latest PatPat discount code. From dungarees to zipper jackets, you can suit up your kid for any occasion at PatPat.