Recent Major Cyberattacks in CANADA

Recent Major Cyberattacks in CANADA
1. Toronto SickKids Hospital (Dec 2022 – Jan 2023)
  • AttackRansomware (LockBit gang) disrupted critical systems for weeks, delaying lab results and surgeries.
  • Response: Refused to pay ransom; restored data from backups.
  • Lesson: Healthcare must prioritize air-gapped backups and incident response drills.
2. Indigo Books (Feb 2023)
  • Attack: Ransomware (likely Royal or BlackCat) shut down online sales for a month.
  • Impact: $5M+ losses; exposed employee banking details.
  • Trend: Retailers targeted via third-party vendor vulnerabilities.
3. Global Affairs Canada (Jan 2024)
  • AttackState-sponsored espionage (linked to China) breached diplomatic emails.
  • Aftermath: Forced password resets; accelerated Zero Trust adoption in government.
  • Key Takeaway: Mandate FIDO2 security keys for high-risk sectors.
4. London Drugs (April 2024)
  • Attack: Ransomware forced nationwide store closures for a week.
  • Hacker Tactics: Exploited unpatched VPN flaws (similar to MGM Resorts attack).
  • Defense Tip: Patch VPNs/Citrix within 24 hours of critical updates.
5. University of Winnipeg (May 2024)
  • AttackData breach exposed 95,000 student/staff records (names, SINs).
  • Cause: Likely phishing or compromised third-party software.
  • Action: Universities should implement AI-driven phishing filters.
Emerging Threats in Canada (2024)
  • AI-Powered Scams: Deepfake voice calls targeting bank customers (e.g., TD Bank warnings).
  • Ransomware-as-a-Service (RaaS): Groups like LockBit 3.0 targeting SMBs.
  • Critical Infrastructure Risks: Water treatment plants and energy grids under threat (see CCIRC alerts).