Canada Bolsters Cyber Defenses Amidst Ongoing Russian Threats
The Communications Security Establishment (CSE) and its Canadian Centre for Cyber Security (Cyber Centre) are urging Canadian organizations to heighten their cybersecurity defenses in response to persistent threats from pro-Russia cyber actors, particularly as the four-year mark of Russia’s full-scale invasion of Ukraine approaches.
Rising Cyber Threats Linked to Russia
Over the past four years, the Cyber Centre has observed a consistent pattern of cyber activity originating from actors aligned with Russian interests targeting Canada and other nations supporting Ukraine. These attacks have impacted a wide range of entities, including government agencies, military organizations, private sector companies, public sector bodies and critical infrastructure networks .
Russian cyber threat actors have employed various tactics to disrupt Canadian services, including targeting cloud-based platforms, supply chains, and internet-facing systems. Distributed denial-of-service (DDoS) attacks have been a common method used to overwhelm systems and render them unavailable.
The Role of Ideologically Motivated Groups
In addition to state-sponsored actors, the Cyber Centre has noted the activity of ideologically motivated, pro-Russia non-state cyber groups. Although generally less sophisticated than their state-backed counterparts, these groups operate independently, introducing an element of unpredictability and a willingness to capture greater risks .
Specific Threats and Vulnerabilities
Canadian organizations and critical infrastructure operators are advised to remain vigilant against potential service disruptions, website defacement, and increased ransomware activity. Particular attention should be paid to Internet-connected operational technology (OT) devices, which are often easily discoverable and vulnerable to cyberattacks .
Canada’s Cyber Defense Expansion
In March 2022, shortly after the start of Russia’s invasion of Ukraine, Canada quietly extended its cyber defense umbrella to include Ukraine and Latvia. This designation, authorized by Defence Minister Anita Anand, allows the CSE to provide cybersecurity assistance to these countries, helping to protect their electronic networks and systems of importance .
The CSE Act permits the agency to conduct defensive cyber operations to protect designated systems of importance, but not active operations. The CSE’s cyber centre has been notifying Ukraine of hostile cyber activities and identifying vulnerabilities within its national infrastructure .
Contacting the Cyber Centre
Canadian organizations that believe they may have been targeted by cyber threat activity are encouraged to contact the Cyber Centre for assistance. They can reach the Cyber Centre by email at contact@cyber.gc.ca or by phone at 1-833-CYBER-88 .
Russia’s Broader Situation
Beyond the cyber domain, analysis indicates Russia is facing significant challenges. Despite its military actions in Ukraine, Russia is experiencing substantial losses and minimal gains, coupled with a decline in its economic power, characterized by slow growth, weak productivity, and a shrinking manufacturing sector .
Keep reading