In January of 2024 the Toronto Zoo discovered a data breach that contained information on transaction records going back to the year 2000. Now, in March of 2025, the zoo authorities have issued a final statement confirming that the cybersecurity breach compromised personal data from guests, members, employees, and donors. The compromised information includes names, addresses, phone numbers, and email addresses linked to general admission and membership purchases. Some guests who made credit card transactions had the last four digits of their credit card numbers and expiration dates exposed as well. Unfortunately, some of this data has already been published on the dark web.

Ontario’s Information and Privacy Commissioner has launched an investigation into the breach, while the zoo is working with the City of Toronto’s Chief Information Security Office to bolster its security posture. Read more about this story on our LinkedIn page