October 31, 2024 at 01:58PM
China has emerged as Canada’s primary cyber threat, with state-backed actors infiltrating at least 20 government agencies over five years to gain strategic advantages. The Canadian Cyber Security Centre warns of ongoing vulnerabilities and increasing complexities in critical infrastructure, highlighting ransomware and adversarial campaigns as significant risks.
**Meeting Takeaways:**
1. **Primary Cyber Threat:** Chinese state-backed actors are identified as Canada’s most significant cyber threat, particularly from the People’s Republic of China (PRC), which has been collecting data from Canadian government networks for the past five years.
2. **Security Assessment:** The Canadian Centre for Cyber Security’s National Cyber Threat Assessment labels PRC’s cyber operations as “second to none” and reports breaches in at least 20 Canadian government agencies and departments.
3. **Intent of Attacks:** The cyber intrusions aim to gather information for strategic, economic, and diplomatic advantages, with increased activity correlating with rising tensions between the West and China.
4. **Current Status:** While the compromised federal networks have been secured, the centre cautions that cyber attackers now have in-depth knowledge of these systems and may attempt further intrusions.
5. **Complex Cyber Landscape:** The threat environment surrounding Canada’s critical infrastructure is becoming more intricate, with various actors — including cybercriminals and hacktivists — posing risks.
6. **Civilian Targets:** The report suggests adversaries view civilian critical infrastructure as a valid target for cyber sabotage, especially during military conflicts.
7. **Ransomware Threat:** Ransomware is highlighted as the top cybercrime threat facing Canada’s critical infrastructure, alongside concerns about network attacks and online information campaigns aimed at disrupting public opinion.