Chinese Hackers Compromised Multiple Canadian Government Networks for Years, Stole Info: Security Agency
“Over the past four years, at least 20 networks associated with Government of Canada agencies and departments have been compromised by PRC cyber threat actors,” said the National Cyber Threat Assessment 2025-2026, released Oct. 30 by the Canadian Centre for Cyber Security.
CSE chief Caroline Xavier appears at the Foreign Interference Commission in Ottawa on Sept. 26, 2024.The centre identifies China as the top threat actor targeting Canada, noting that its cyber operations are “second to none” in scale, technique, and ambition. Beijing’s objectives include espionage, intellectual property theft, malign influence, and transnational repression, the centre says.
The cyber centre is hosted within CSE, Canada’s electronic spy agency, which is responsible for collecting signals intelligence and defending against cyberattacks.
China Targets
In addition to federal agencies, provincial and territorial governments are also seen as valuable targets for Beijing, the report said, noting that these governments hold decision-making power over regional trade and commerce, including the extraction of critical minerals and other natural resources.Xavier said this targeting indicates Beijing is a “sophisticated, consistent, and persistent actor,” and that Canada needs to address the threat with a more comprehensive approach.
“We have work to do as a nation, to continue to work, in particular with the provinces, territories, indigenous communities, because we recognize that we’re all vulnerable, or we all could be vulnerable, and we really want to continue to raise Canada’s cyber resilience,” she said.
The cyber centre also echoed previous reports from various human rights groups, warning that Beijing’s transnational repression has primarily targeted five specific communities, referred to by the regime as the “five poisons.” These include Falun Gong practitioners, Uyghurs, Tibetans, supporters of Taiwanese independence, and pro-democracy activists.
“PRC actors very likely facilitate transnational repression by monitoring and harassing these groups online and tracking them using cyber surveillance,” the report said. “For example, the PRC has been publicly linked to cyber espionage operations against the Uyghur minority group, including members living in Canada, using spear phishing emails and spyware.”
Other Countries Named
Other state-backed threat actors highlighted in the cyber centre report include Russia, Iran, and India.Russia’s cyber operations are characterized as “a multi-layered strategy” that combines conventional cyber espionage and computer network attacks with disinformation. Its primary goal is to enhance Russia’s global status while undermining democratic institutions in Canada and among its allies.
A specific case cited in the report involves a breach detected by Microsoft in January, where a Russian state-sponsored cyber threat actor known as Midnight Blizzard accessed the company’s cloud-based enterprise email service.
The group infiltrated correspondence between Microsoft and government officials in Canada, the United States, and the United Kingdom. Initially, the actors sought information about Russia itself, but later used personal data and credentials from the emails to gain access to Microsoft customer systems.
Meanwhile, the report said Iran has been expanding its cyberattacks to western countries amid its ongoing military conflict with Israel.
“Iran has taken advantage of its back-and-forth cyber confrontation with Israel to improve its cyber espionage and offensive cyber capabilities and hone its information campaigns, which it is now almost certainly deploying against targets in the West,” the report said.
During the press conference, Xavier also identified India as an “emerging threat” to Canada.
“India very likely uses its cyber program to advance its national security imperatives, including espionage, counterterrorism, and the country’s efforts to promote its global status and counter narratives against India and the Indian government,” the report said.
Citing her recent testimony before the foreign interference inquiry, Xavier noted India could potentially “flex those cyber threat actions against Canadians” amid ongoing diplomatic tensions.
Earlier this month, Canada expelled six Indian diplomats, prompting a reciprocal move by India, which also expelled six Canadian diplomats. This dispute arose after the RCMP announced its investigation into criminal activities allegedly involving “agents of the Government of India.”
‘Ever-Present’ Threat
The Centre for Cyber Security says Canada has entered a new era in which cyber threats are “ever present.”“Canadians will increasingly feel the impact of cyber incidents that have cascading and disruptive effects on their daily lives,” the report said.
The centre says the threat has expanded as Canadians increasingly rely on online platforms and digital technologies to go about their lives.
“These systems record and process vast amounts of data about us, often over poorly secured or untrustworthy digital networks,” it said.
Aside from the threats from hostile state actors, the centre notes that the cybercrime business model is “underpinned by flourishing online marketplaces” where leaked data is sold along with cyber tools for criminals.
https://www.theepochtimes.com/world/chinese-hackers-compromised-20-government-networks-in-past-4-years-cyber-threat-report-5750674?utm_source=China_article_paid&src_src=China_article_paid&utm_campaign=China-2024-10-31-ca&src_cmp=China-2024-10-31-ca&utm_medium=email&est=LsOHrvV1hQPBXoXvjMY2yFlVM%2FvU4i82pLPt9A8ykEfLpFt%2B0WuPb%2F4ktK4O3%2F6ACMcU&utm_term=news1&utm_content=1
Post a Comment