The Canadian government department for foreign and diplomatic relations, Global Affairs Canada was hit by a Cyberattack last week. While critical services remain accessible, access to some online services is currently not available, as government systems continue to recover from the attack.

How Global Affairs Canada Systems face Network Disruption?

Global Affairs Canada (GAC) systems faced a network distribution after being hit with a Cyberattack last week. GAC is the Canadian government department responsible for looking after the country’s diplomatic and consular relations, international trade, and leading international development and humanitarian assistance programs.

In the recent statement, the Treasury Board of Canada Secretariat (TBS), Shared Services Canada, and Communications Security Establishment together confirmed that a cyber incident involving Global Affairs Canada took place, sometime last week.

The attack was detected on January 19th, after which mitigation actions were taken. The Canadian government further states while critical services continue to be available via Global Affairs’ online systems, “some access to internet and internet-based services” is not available as mitigation measures have been put in place and systems undergo recovery.

There is no indication that any other government departments were impacted by the attack explains the government. “There are systems and tools in place to monitor, detect, and investigate potential threats, and to take active measures to address and neutralize them when they occur,” says TBS.

How Attack arrives in Middle Ukraine-Russia Tensions?

Official sources have not yet revealed what was the cause of the attack or who are the threat actors behind it, as the investigation continues. The cyberattack against the Canadian government comes at a time when Russia-Ukraine tensions continue to escalate.

Equally interesting is the fact that the attack happened around the same time as the Canadian Centre for Cyber Security issued a warning to “critical infrastructure operators” to be aware of and take mitigatory actions against known Russia-backed cyber threats. “This investigation is ongoing. We are unable to comment further on any specific details for operational reasons,” says TBS.

“Our cyber defence and incident response teams work 24/7 to identify compromises and alert potential victims within the GC and Canadian critical infrastructure. The incident response team offers advice and support to contain the threat and mitigate any potential harm.”

Earlier this month, numerous Ukrainian government websites were deformed, including that of the country’s foreign affairs ministry. Some presumed threat actors to be Russian although website destruction acts aren’t the typical attack method used by a Russian state-sponsored hacking group like GRU.

While the threat actors behind the incident are yet to be revealed, this isn’t the first time that attackers have successfully targeted Canadian government systems. In November 2021, the Canadian region of Newfoundland and Labrador was hit by a cyberattack yielding extreme disruption to healthcare providers and hospitals.

In early 2021, Canada Post suffered a data breach due to a ransomware attack against one of its third-party providers. Before that, hackers were able to access 9,041 GCKey accounts through the “credential stuffing” technique to steal tax relief payments from Canadians.

“We are regularly checking steps to save Canadians and our critical infrastructure from electronic threats, hacking, and cyber spying,” while encouraging everyone to pursue cybersecurity best techniques.