Menu
Browse

Cyber Threat Actor: Jimmy Saintelien

Actor Type Location Known Incidents
 Icon
Criminal
Canada
1 incident
Profile

Jimmy Saintelien, also known bythe alias Jimmy Saintelien, is an individual linked to a large‑scale identity theft operation that targeted educators in Quebec. He resides in Canada, specifically in the Montreal area, where he was apprehended alongside two accomplices in early 2018. The operation resulted in the theft of personal information belonging to as many as 360,000 current and former teachers and education workers. Quebec provincial police identified Jimmy Saintelien, Frédéric Lapointe and Rath Pak as the three Montreal men responsible for the breach. The arrests followed a public disclosure by Quebec’s education minister that exposed the scope of the data compromise. Authorities described the activity as a widespread identity theft scheme rather than an isolated incident. The stolen data included names, addresses, social insurance numbers and other personal details typically used for fraudulent purposes. The case highlighted the vulnerability of educational sector databases to criminal exploitation. No evidence was presented linking Jimmy Saintelien to any state‑sponsored group or larger cybercrime syndicate. Details of the investigative techniques were not disclosed in the reporting.

The targeting was confined to the education sector within the province of Quebec, focusing on teachers and associated staff. The strategic objective, as indicated by the nature of the stolen data, was to enable identity theft. No specific malware families, exploit kits or custom tooling were referenced in the public reporting of the incident. The incident involved the unlawful acquisition of personal data from education sector records. Attribution remains limited to the three individuals arrested, with no publicly established connections to foreign intelligence services or organized crime networks. The Quebec teachers data breach stands as the most notable campaign publicly associated with Jimmy Saintelien. It serves as a representative example of how criminal actors can exploit sector‑specific databases to harvest large volumes of personal data. The case resulted in the arrest of the three individuals. No further operations or aliases have been publicly tied to Jimmy Saintelien beyond this incident.

Incidents
Attributed incidents available to members
1 incident
Sources
Sources available to members
1 source