A recent report from the federal auditor general highlighted substantial deficiencies in the federal government’s response to the escalating number of perilous cyberattacks. The report, presented in the House of Commons, unveiled inadequate coordination among agencies responsible for safeguarding the government’s IT systems during cyber assaults, leading to prolonged access to personal information by attackers.
According to the audit, the Treasury Board of Canada Secretariat, Communications Security Establishment Canada (CSE), and Shared Services Canada possess the necessary tools to shield government networks from cyber threats. However, Auditor General Karen Hogan noted that not all departments and agencies utilize the recommended cybersecurity measures, indicating gaps in coordination and information sharing during attacks.
The audit revealed that CSE and Shared Services Canada intercepted a vast number of suspicious cybersecurity events, ranging from network scans to sophisticated attacks. Nonetheless, successful breaches have occurred, such as the 2014 breach at the National Research Council Canada, which resulted in substantial financial losses and network reconstruction efforts.
Despite the surge in sophisticated cyberattacks, the report raised concerns about inconsistent utilization of cyber tools across federal organizations. While some departments deploy CSE’s cybersecurity sensors, a significant portion fail to leverage Shared Services Canada’s secure internet connection, impacting the government’s ability to defend against cyber threats effectively.
Furthermore, the audit highlighted delays in coordinating responses to security breaches, increasing the risk of data compromise. Inadequate information sharing and slow coordination among key cyber organizations during active attacks were identified as significant challenges, hampering the government’s ability to mitigate cyber threats promptly.
The audit recommended a reassessment of cybersecurity incident management practices by the relevant departments and emphasized the need for comprehensive inventories of government IT assets to enhance cybersecurity measures. In response, officials affirmed their commitment to bolster monitoring and threat detection capabilities, acknowledging cybersecurity as a critical national priority essential for maintaining public trust in government institutions.
Notably, CSE has cautioned about the persistent cyber threats posed by countries like China, Russia, Iran, North Korea, and India, underscoring the ongoing need for robust cybersecurity measures to safeguard sensitive government information and infrastructure.