The suspect of the mega-theft of personal data of 9.7 million Desjardins customers would have tried to fool his employer, who had asked him to return his computer and a USB key used to commit the mischief.
• Read also: Desjardins: files deleted by the data theft suspect
On May 24, 2019, the Fédération des caisses Desjardins discovered that its employee Sébastien Boulanger-Dorval had “illegally appropriated highly confidential information”, we can read in court documents made public yesterday.
Desjardins then called the suspect, who at around 3 p.m. the same day transferred the stolen data he had initially downloaded to his work laptop to a USB key.
“Following Desjardins’ request to return his laptop and the USB key on which the files had been downloaded and while he was working from home, Boulanger erased several files from his computer and gave Desjardins a different USB key. than the one where he had transferred the forty (40) confidential files, ”explains Desjardins in the documents drafted at the time, which we were able to consult.
“Conceal all traces”
The USB key given by Boulanger-Dorval the same evening “contained nothing”, according to Desjardins, who believes that the behavior of his employee “clearly shows that he wanted to hide all traces of his misdeed”.
A judge then gave Desjardins emergency exceptional authorization to go to the Boulanger-Dorval home to seize computer equipment.
The operation, carried out two days later, however, failed to trace the infamous USB key used to transfer the stolen information, the documents say.
Sébastien Boulanger Dorval, who was fired, had access in the course of his work to certain confidential data, which he could use “to identify members who might be interested in certain Desjardins products”.
For two and a half years he has been the subject of a criminal investigation by the Sûreté du Québec in connection with the theft of data, but has not yet been charged to this day.