A recent report by the federal auditor general highlighted significant deficiencies in the federal government’s response to the escalating number of dangerous cyberattacks. The report, presented in the House of Commons, identified inadequate coordination among the agencies responsible for safeguarding the government’s IT systems during cyber assaults, leading to prolonged access to personal information by attackers in some instances.
According to the audit, the Treasury Board of Canada Secretariat, Communications Security Establishment Canada (CSE), and Shared Services Canada possess the necessary tools to shield government networks from cyber threats. However, Auditor General Karen Hogan emphasized that not all government entities utilize the recommended cybersecurity measures, exposing vulnerabilities in coordination and information sharing during cyber incidents.
The audit disclosed that CSE thwarted approximately 2.4 trillion suspicious cybersecurity events between April 2023 and March 2024, while Shared Services Canada blocked around 6.6 trillion suspicious events from October 2023 to September 2024. Despite these efforts, successful breaches have occurred in the past, such as the 2014 breach at the National Research Council Canada and cyberattacks on Global Affairs Canada and the Financial Transactions and Reports Analysis Centre of Canada (FINTRAC).
The report also raised concerns about the inconsistent adoption of essential cyber tools across federal organizations. Even though most large departments are mandated to use cybersecurity services, a notable percentage failed to utilize critical services like CSE’s sensors and Shared Services’ secure connection. This lack of uniformity in cybersecurity practices hampers the government’s ability to detect and counter cyber threats effectively.
Furthermore, the report highlighted shortcomings in coordinating responses to cyber incidents among the main cybersecurity organizations. Delays in information sharing and coordination during active cyberattacks were cited as factors that could prolong the exposure of sensitive information to attackers. The audit recommended that the agencies reassess their incident management protocols to enhance cybersecurity preparedness.
In conclusion, the audit underscored the importance of enhancing cybersecurity practices across federal entities to mitigate the risks posed by cyber threats. The government officials acknowledged the need to invest in advanced monitoring and threat detection capabilities to uphold public trust and safeguard critical information from evolving cyber threats.