With Canada sanctioning Russia for its invasion of Ukraine and supporting the latter with weapons and intelligence, an official with the Canadian Centre for Cyber Security (CCCS) says his agency is closely monitoring for potential retaliation from Russia in the form of cyber threats.
“I’m aware of the fact that the committee is currently concerned with the Russian attack on Ukraine,” said Sami Khoury, head of the CCCS, during a meeting of the Standing Committee on National Defence on March 28.
“I cannot speak about our specific operations within the framework of this presentation, but I can confirm that we are closely monitoring the cyber threat activities related to these military manoeuvres. Today we’re not aware of any specific threats to Canadian organizations in relation to events in and around Ukraine.”
The CCCS is a component of the Communications Security Establishment (CSE), Canada’s signals intelligence agency, similar to the U.S. National Security Agency (NSA) or the British Government Communications Headquarters (GCHQ).
While the Cyber Centre says that cyber crime remains the most likely threat to affect Canadian individuals and businesses, Khoury said the “state-sponsored cyber programs of China, Russia, North Korea, and Iran pose the greatest strategic threat to Canada.”
When asked by Conservative MP Kerry-Lynne Findlay to rate those threats in order of importance, Khoury said it’s difficult to compare the actors against each other, but warned that “in the current context, we have to be mindful of the geopolitical tensions and ... the Russian cyber threat.”
An official from the Canadian Security Intelligence Service (CSIS) also testified before the committee and said the increased reliance on computer networks in daily life, including more people working from home, combined with the advances and proliferation of technology is dramatically changing the cyber threat environment.
“It has become more complex, increasingly fluid, less predictable, and consequently, more challenging,” said Cherie Henderson, an interim assistant director with CSIS.
“Canadian companies and almost all sectors of our economy have been targeted and compromised,” she said, noting that thousands of cyber attacks target Canadian entities every day and the trend is increasing.
Henderson said the national intelligence agency’s two main cyber concerns involve defending against theft of intellectual property and attacks against critical infrastructure, an area she says “could [be] very vulnerable.”
The ability of cyber actors to take control of key infrastructure and wreak havoc has been demonstrated a number of times in recent years.
“We are aware of the connection between the Russian intelligence services and cyber criminal organizations,” Khoury said, noting cyber criminals have been known to “take sides” between Russia and Ukraine during the ongoing conflict between the two countries.
“From a Cyber Centre perspective, we have the task of defending the country, defending Canada, defending critical infrastructure against all sorts of threats, irrespective of whether it is nation-state or cyber criminal.”
