More than 10,000 Canadians received a medically-assisted death in 2021: report
Quebec Superior Court suspends Bill 96’s translation requirement until constitutionality determined
The Ontario government has given Maggie an ultimatum: the disabled teen can lose her funding or her independence
FBI took 11 sets of classified material from Trump’s Mar-a-Lago home while investigating possible Espionage Act violations (US)
Ontario class action settlement reclassifies volunteers as employees, setting new precedent
Availability of Judicial Review in SABS Disputes
Are masking policies still valid?
Justice Canada releases commission report on impact of lack of legal aid in family law disputes
Harmonized sales tax part of maximum amount of attendant care benefits owed by insurer: court
New rules coming next month to help Canadians with cancelled and delayed flights
Stephen King set to testify for govt in books merger trial (US)
New law program in Quebec to begin next fall, a first in 50 years
The Impact of the Lack of Legal Aid in Family Law Cases
SCC rules that when someone is required by their partner to wear a condom but do not, they could be guilty of sexual assault.
Big Plastic suing feds over single-use ban — again
Tim Hortons offers coffee and doughnut as proposed settlement in class action lawsuit
The SCC has refused to hear the appeal to declare the renewal of the state of health emergency by the Quebec government invalid
Federal privacy commissioner investigating controversial ArriveCAN app
Kraken, a U.S. Crypto Exchange, Is Suspected of Violating Sanctions (US)
Ontario court certifies class action on former patients’ anxiety from notice of risk of infection
The stakes couldn’t be higher as Canada’s top court decides whether to hear climate class action lawsuit
Professor Barnali Choudhury selected by EU as trade and sustainable development expert
The Supreme Court decision on the ‘Ghomeshi’ amendments will help sexual assault victims access justice
AFN Reaches $20 B Final Settlement Agreement to Compensate First Nations Children and Families

National Defence looking at potential ‘impacts’ after cyberattack on military contractor

2021 has been a historic year when it comes to global ransomware attacks. Head of Canadian Centre for Cyber Security, Sami Khoury explains why they have become so commonplace – Dec 9, 2021.

PHOTO: Stock
The Department of National Defence (DND) is probing for potential “impacts” after a military contractor notified them of a recent cyberattack, allegedly by a ransomware group with Russian ties.

DND confirmed Tuesday that CMC Electronics, a Montreal-based aerospace company, recently alerted the Canadian government to a “cyber breach related incident” at their company in late May.

Procurement records show the company has done millions in work for the Canadian Armed Forces, chiefly in aerospace engineering and research and development — approximately $19.5 million since 2011, according to DND.

The majority of the contracts (66) were for research and development or engineering services.

The government announced on May 30 that CMC would be part of a team working on an $800 million job to upgrade Canada’s 85 CH-146 Griffon helicopters.

“DND/CAF does not comment on the cyber or IM/IT approaches of third-party vendors; however, we recognize the importance of cyber security in defence and defence contracting,” said Jessica Lamirande, a spokesperson for National Defence, in a statement to Global News.

Lamirande added that none of DND’s internal systems employ CMC Electronics technology.

“We are continuing to monitor this situation, while ensuring DND/CAF information is safeguarded.”

Repeated efforts to reach CMC Electronics were unsuccessful. But in a statement Wednesday afternoon, CMC’s parent company issued a statement confirming they identified a “third-party intrusion” into their network “that disrupted … operations, in connection with a ransom demand.”

“We shut down our network to protect our systems and data, and immediately launched an investigation, with the help of cybersecurity and cybercrime experts,” the statement from U.S.-based TransDigm Group read.

There is no indication that the hacker or hackers behind the breach stole sensitive information.

But public reports, including from Montreal’s La Presse newspaper, suggested the ransomware attack — in which hackers lock organizations out of their own networks and demand a ransom to relinquish control — was allegedly done by a group known as “ALPHV” or “BlackCat.”

A Canadian intelligence source with knowledge of cybersecurity and related “threat actors,” who spoke to Global News on the condition they not be named, described ALPHV/BlackCat as an “affiliate ransomware-as-service” group that sells its services to decentralized groups of clients, who in turn pay fees to BlackCat.

The Canadian intelligence source added some cybersecurity experts believe BlackCat’s technology was developed by another group directly linked to the Russian state.

But profit, rather than pilfering state secrets, appears to be the primary motive.

“(It) seems to be part of some criminal campaign, and not specifically a state campaign,” the source said of CMC’s breach.

In an interview with Global News, Max Heinemeyer, the vice-president of cyber innovation at cybersecurity outfit Darktrace, called BlackCat an extremely prolific and dangerous ransomware group that appears to have links to Russian programmers.

Heinemeyer said that because of the nature of hacking networks in Eastern Europe, the group could potentially have ties to Russian intelligence or organized crime networks.

Unless you’re a major state intelligence agency, Heinemeyer added, it’s nearly impossible to ascertain who exactly is behind ransomware attacks. But it’s also probable the Russian government knows of the group — and allows BlackCat to continue to operate.

The Communications Security Establishment, Canada’s electronic espionage and cyber defence agency, has repeatedly and publicly warned businesses and organizations about the growing threat of ransomware attacks.

“Ransomware is the most common cyber threat Canadians face, and it is on the rise,” read recently publicly-released documents prepared for Defence Minister Anita Anand.

“The global average total cost of recovery from a ransomware attack has doubled in a year, increasing from $970,722 CAD to $2.3 million CAD in 2021. The average ransomware payment in 2020 was $312,493, up 171 per cent from … 2019.”

The CSE’s position mirrors that of close security partners in the U.S., U.K. and Australia, who warned in February that they have observed an increase in “sophisticated, high-impact ransomware incidents against critical infrastructure organizations globally.”

— with files from Marc-André Cossette. 


Want direct access to the latest LITN content?

Stay in the loop ➞ Subscribe to LITN instant notifications.
Receive the latest content delivered directly to your device.
Unsubscribe at anytime.

Latest News


Join the LITN Newsletter ➞ the latest news delivered to your inbox. Unsubscribe at any time.


Instagram Feed