A recent report from the federal auditor general highlighted significant deficiencies in the federal government’s response to the escalating number of cyberattacks. The report, presented in the House of Commons, indicated that coordination among the agencies responsible for safeguarding the government’s IT systems was lacking during active attacks, leading to delays that allowed attackers prolonged access to sensitive information.
According to the audit, the three key agencies tasked with cyber defense – the Treasury Board of Canada Secretariat, Communications Security Establishment Canada (CSE), and Shared Services Canada – had the necessary tools to protect government networks. However, not all government departments were utilizing the recommended cybersecurity measures, resulting in gaps in coordination and information sharing during cyber incidents.
The audit revealed that CSE’s sensors intercepted around 2.4 trillion suspicious cybersecurity events from April 2023 to March 2024, while Shared Services Canada blocked approximately 6.6 trillion suspicious events from October 2023 to September 2024. Despite these efforts, there were notable breaches, such as the 2014 incident at the National Research Council Canada, costing the government millions to rectify. In January 2024, Global Affairs Canada and FINTRAC also fell victim to cyberattacks compromising their networks and data.
The report emphasized the inconsistent use of cybersecurity tools across federal organizations, with only a portion deploying the recommended services. While some agencies cited maintenance concerns and fears of compromising independence as reasons for not adopting these measures, the report stressed the importance of uniform cybersecurity practices to protect government data and operations.
Inefficient coordination during cyberattacks was another key finding of the audit, with delays in sharing crucial information hindering response times. The report urged the three main departments to reassess their incident management practices and highlighted the need for comprehensive inventories of government IT devices to enhance cybersecurity measures.
In response to the audit, officials stated their commitment to improving monitoring and threat detection capabilities to uphold public trust and secure sensitive information. The report also underscored the persistent cyber threats posed by countries like China, Russia, Iran, North Korea, and India, emphasizing the critical importance of cybersecurity as a national priority.
