Industry committee  From our perspective, we're one intelligence thread that is fed into CIRA. I'll let our colleagues at CIRA talk about the broader approaches, but our feed comes from our defence of the Government of Canada. As we see attacks or compromises happening, such as, for example, spam em

Industry committee  When we are working with any government department, it is primarily so that they are aware of the possible risks that come with any sort of activity online. The one truism is that no matter what technology you use, it always comes with risks. We really do try to work proactivel

Industry committee  We really haven't seen a change in the cybersecurity environment. We have seen a shift in themes towards those related to COVID, but the level of activities has remained pretty constant around all aspects of cybersecurity.

Industry committee  We work with partners around the world, including commercial partners. If we do see, for example, the Government of Canada's websites being impersonated, we ask for those to be taken down. We'd also work with our law enforcement partners if we thought there was a criminality ele

Industry committee  Thank you for the question. While I emphasized the health care sector, given the pandemic, we are actually working with and reaching out to every sector of critical infrastructure in the economy, including universities and the broader education sector as well. We rely on the rep

Industry committee  Whether it's a trend or not—we don't have enough information to determine that—we certainly do see that universities, due to their open nature and the rapid influx and departure of students, do have unique vulnerabilities. They are also emphasizing the open, collaborative nature

Industry committee  “Intervene” was probably a bit of a loose term. What we do depends upon what the organization is comfortable with and the type of cyber-incident. If it's traditional ransomware, we'll provide advice and guidance. We'll try to help them recover, best practices, etc. If it's a more

Industry committee  Well, I'm an engineer and not a lawyer, so I'm not sure that I'm qualified to demonstrate the standard of care. One of the things we have worked on with our colleagues in Innovation, Science and Economic Development is the cybersecure Canada program to provide baseline cybersecu

Industry committee  Certainly the one thing about ransomware is that it is massively under-reported. We know that. When people do come forward, it tends to be on the cybercrime side of things. That is what we've seen. We have reported and looked for other types of links, but it's predominantly cyb

Industry committee  We issued a joint statement with our colleagues at the Canadian Security Intelligence Service warning that Canadian organizations can expect to be targeted not only...but by different foreign actors as well. One of the things we really emphasize is the need to take proactive meas

Industry committee  Our goal is to really make sure we're getting information out so that people can protect themselves before it becomes an actual incident—

Industry committee  We've seen some compromises in research organizations, which we've been helping to mitigate. We're still continuing to look through what the root cause of those is.

Industry committee  That's something that we'd have to look into and get back to you on. We really look to see how to block the activity before it becomes a compromise, regardless of who the actor is. We put our attention to anybody who is targeting these types of organizations, be they criminals, s

Industry committee  We continue to work with organizations, but one of the things that we don't do.... There's not a giant magnifying glass looking at Canada and the Internet activity. We don't direct our activities at Canadians, so we really do rely on a partnership and an engagement with colleague

Industry committee  We have worked with some private sector actors. Whether or not it's related to COVID or the research and development type of activity remains to be seen, but we've been working with private sector actors ongoing. It increases as more people become aware of what we can provide and