A recent federal auditor general report highlighted significant deficiencies in the federal government’s response to the escalating number of dangerous cyberattacks. The report, unveiled in the House of Commons, disclosed inadequate coordination among agencies responsible for safeguarding the government’s IT systems during active attacks, resulting in prolonged access to personal information by attackers.
The audit emphasized that gaps in cybersecurity defenses weaken the government’s ability to safeguard critical information and manage cybersecurity risks effectively. While the Treasury Board of Canada Secretariat, Communications Security Establishment Canada (CSE), and Shared Services Canada possess the necessary tools to protect government networks from cyber threats, not all departments utilize the recommended security measures.
Auditor General Karen Hogan noted that the lack of uniform adoption of cybersecurity services across departments led to coordination and information sharing gaps during cyber incidents. The audit revealed staggering numbers of suspicious cybersecurity events blocked by CSE and Shared Services Canada, underscoring the persistent attacks on government systems.
Noteworthy breaches such as the National Research Council Canada incident in 2014 and cyberattacks on Global Affairs Canada and the Financial Transactions and Reports Analysis Centre of Canada (FINTRAC) in January 2024 were highlighted in the report. Despite the increasing sophistication of cyber threats, inconsistent utilization of cyber tools was flagged as a concern, impacting the government’s ability to defend against cyberattacks effectively.
The audit also pointed out delays in monitoring security breaches, attributing them to insufficient coordination among the main cyber organizations during active attacks. The report highlighted instances where slow information sharing hindered timely responses to cyber incidents, allowing attackers extended access to sensitive information.
Recommendations were made for the main departments to reassess their cybersecurity incident management practices. The audit further revealed incomplete inventories of government IT devices by Shared Services Canada and CSE, hindering a comprehensive understanding of vulnerabilities that could be exploited in cyberattacks.
In response, Shared Services Canada and the CSE pledged to enhance monitoring and real-time threat detection. Recognizing cybersecurity as a national priority and essential for public trust, government officials reiterated the importance of securing personal information and critical systems in an increasingly hostile digital landscape. CSE’s warnings about sophisticated cyber threats from countries like China, Russia, Iran, North Korea, and India were also highlighted in the report.