The City of St. John’s is reporting a privacy breach, affecting 219 residents who use the RECconnect online system.
The city says on Tuesday an employee was the victim of a phishing scam in which someone posing as a fellow employee asked for an accounts receivable report via email.
City officials became aware of the breach on Thursday.
The information affected includes names, RECconnect account numbers, and amounts owing.
The city says, however, that the information cannot be used to access online accounts, and that those affected have been notified by phone or email.
They say while contact information was not affected, people should be aware of suspicious emails claiming to be from the city.
Officials apologized for the “distress or inconvenience the situation may cause,” noting “robust” cybersecurity training is provided to employees, and that “personalized additional training” will provided as a result of the breach.