Industry Committee on Oct. 3rd, 2022

We'll go back and look.

I'll add that, as folks know, the RCMP is not the police of jurisdiction in all parts of Canada, so it might not give the full picture of what's happening at municipal or provincial levels where the RCMP isn't the police of jurisdiction. We'll see what we can find.

Yes, for Cybersecurity Awareness Month, there's actually a government-wide effort. In many respects, the cyber piece is led by the Canadian Centre for Cyber Security, another initiative that was part of the new national cybersecurity strategy that was released in 2018.

Part of that, as I mentioned, is that this month it's about not getting phished. It's all about phishing. We both have activities that we support. We help out the cyber centre with that under their “Get Cyber Safe” campaign.

As I mentioned in my remarks, we have Fraud Prevention Month in March, which is a big event. Last year, I think we had over 300,000 visits to the CAC website during that month, and we think that through social media we reached about 700,000 people. It does give you a sense that if you craft the—

Sure.

It is a good point. The majority of those are in the two official languages of Canada, but we recognize that there is a need to figure out how to do more outreach to new Canadians or folks who don't speak English or French. At different levels or, in some cases, the non-profit or NGO sector, there's quite a bit of work in this space, but there's definitely more to be done.

I'll start, and then I'll turn to Sergeant Larocque to speak a little more about the senior support program.

I agree. Part of where I think we are now in terms of a program for prevention and awareness is really trying to tailor the approach to different audiences to figure out what resonates with them and what they need in order to stay safe online or not become the victim of a telephone scam.

You're right that seniors may feel more comfortable getting pamphlets or booklets. We've done some work in the past in producing booklets and using other formats, such as in-person meetings or in-person gatherings to promote that. COVID threw a wrench into a lot of that work for a couple of years, but we're now back into that space.

I'll let Sergeant Larocque talk a bit more about the senior support program and outreach activities there.

In terms of outreach, we have proactive presentations that are done in person, to the extent that they can be done. Of course, as Mr. Lynam explained, COVID slowed down our efforts, but we still found ways to be able to reach out. We had virtual presentations when we could not be there in person. Our senior volunteers have now started to do in-person engagement.

Just last week or the week before, one of my communications officers gave a presentation to newcomers. It was great to be able to familiarize them with all of the fraudulent threats that can be out there and to help them navigate through them.

I recognize that prevention will continue to be key. We'll never do enough prevention. There's always more that we can do, and it's always going to remain a challenge to be able to reach as many people as possible.

One thing that we've reproduced at the centre is using the hashtag #Tell2. Basically, if I tell two people about a fraud story or a fraud threat and then they tell it to two others, it will amplify the messaging.

You mentioned senior victims of fraud, who can be more vulnerable and difficult to reach. That's why we ask their families to be able to help us reach out and have those conversations with them.

I'm not aware of a solution like that. I think we need more ideas about how we make it easier for people to report it when they're a victim. It is part of the mandate of the NC3 to work with the CAFC to do that.

For example, we are building and rolling out a new online system called the national cybercrime and fraud reporting system. We started it and went right back to first principles. We went and talked to senior citizens to say, “Hey, if you were to report online, what language would resonate with you? How could we make it easier?” We've redesigned an approach that allows that. We are rolling it out. It's currently in our beta approach. We get about 25 victims a day and we iterate it constantly to make it more user-friendly.

That's just one example. We have to both make it easier and explore different ways to help Canadians report. That information feeds into the ecosystem that can then help investigations or further prevention efforts.

Those are three good recommendations.

In terms of the first one, a lot of work has been done to get more data and information out there about fraud. Very shortly, we're going to be releasing a report on the annual activities of the CAFC, which will have a lot of additional data about fraud and what have you. That should be coming out in the next little while.

We're continually looking at information-sharing arrangements with other agencies and what have you. We talked earlier about working with the CRTC on that. I'd say there has been some progress in how we work with them, but there's more to be done.

I'll turn it over to Sergeant Larocque to talk about our open data approach at the CAFC.

Right now there have been recent developments on that front. We want to release more data and make it more accessible to the public, so we're currently working with one of our units at the RCMP to publish that type of data using the open government data concept. For example, some of the reports that we publish are for prevention, like the bulletin reports and things like that. They will be the types of reports that we will look at to be uploaded to that portal, as well as fraud-related data that's coming.

Even for the academic sector, for example, if they want to do research, the data will be a lot more accessible, because some trend data will become available, hopefully, in the near future.

Of course, data will be anonymized to protect victim and suspect information, but the data will still be sufficient to enable some trends to be seen. As Mr. Lynam mentioned, the annual report will also provide some good contextual data as well.

I think there would be great support for bringing the stakeholders together in different forms—whether it's a summit or some other type of activity—to talk about the impact and figure out solutions.

For example, there is a lot of activity already, with the government recently putting out a call for consultations for the renewal of the national cyber security strategy. That was an avenue both to solicit online input and meet with different stakeholders.

We talk about addressing cybercrime and fraud as being a team sport. It involves law enforcement, other government agencies and the private, non-public sector. I frequently go to conferences or events where that is the theme, and people are in those rooms committed to figuring out solutions to reduce victimization.

I think events or activities whereby we can bring those stakeholders together to say, “This is what I'm seeing and here are some solutions I think I can put on the table” would be beneficial.