Ottawa: The RCMP’s National Division Integrated Technological Crime Unit (ITCU) has  charged a 19 year old London, Ontario man in relation to the malicious breach of taxpayer data from the Canada Revenue Agency (CRA) website.

Stephen Arthuro Solis-Reyes was arrested at his residence on April 15 without incident. He faces one count of Unauthorized Use of Computer and one count of Mischief in Relation to Data contrary to Sections 342.1(1)(a) and 430(1.1) of the Criminal Code.

It is believed that Solis-Reyes was able to extract private information held by the CRA by exploiting the security vulnerability known as the Heartbleed Bug.

“The RCMP treated this breach of security as a high priority case and mobilized the necessary resources to resolve the matter as quickly as possible. Investigators from National Division, along with our counterparts in “O” Division have been working tirelessly over the last four days analyzing data, following leads, conducting interviews, obtaining and executing legal authorizations and liaising with our partners,” said Assistant Commissioner Gilles Michaud.

A search was conducted at the suspect’s residence and computer equipment was seized.

The success of this investigation reflects the collaborative efforts of the RCMP and other government agencies as well as the London Police Service.

Solis-Reyes is scheduled to appear in court in Ottawa on July 17, 2014.

This investigation was conducted as part of the ITCU’s mandate to investigate pure computer crimes where the Federal Government and/or Canadian critical IT infrastructure are victimized.

National Division’s mandate is to focus its expertise in sensitive, high-risk investigations into significant threats to Canada’s political, economic and social integrity.

The investigation is still ongoing. The RCMP is committed to advising Canadians of any significant developments in this case.​