A man uses a computer keyboard in Toronto in this Sunday, Oct. 9 photo illustration. The ransomware business is booming in Canada. Recent victims have included large corporations such as retailer London Drugs, as well as the City of Hamilton, Ont., and the government of Newfoundland and Labrador. THE CANADIAN PRESS/Graeme Roy
The ransomware industry is flourishing in Canada, with recent targets including major corporations like London Drugs, the City of Hamilton in Ontario, and the government of Newfoundland and Labrador.
The criminals behind these attacks, often boasting on the dark web, don't discriminate when it comes to their targets. A variety of organizations have fallen victim, as reported by B.C.-based threat analyst Brett Callow. These range from a library network in B.C. to the First Nations Health Authority in the province and a charity in Ontario that supports disabled children.
Experts in cybersecurity warn that these attacks have serious implications for both the victims and the public at large. They stress the need for comprehensive protection measures in an environment where online security standards are still evolving.
Callow advocates for a complete ban on ransom payments or, at the very least, regulations to restrict them, as a means to curb the increasing frequency of attacks. However, Toronto-based lawyer Eric Charleston argues that the situation is more complex. He cites cases where a ban on payments would have unfairly punished the victims.
Nevertheless, both agree on the importance of enhancing security measures to prevent breaches from occurring in the first place.
Charleston notes that many incidents go unreported, making it difficult to accurately assess the rise in ransom cyberattacks. He attributes the surge in these attacks to the advent of cryptocurrency, which provides cybercriminals, often operating from foreign jurisdictions, with a means to profit from stolen data.
The potential consequences of a data breach are extensive, ranging from financial and reputational damage to potential legal liabilities. Proposed federal and provincial laws in Canada could introduce minimum security standards for certain sectors, reflecting the growing concern over cybersecurity.
However, the battle against cybercriminals is complex and constantly evolving. Law enforcement agencies have achieved some successes, but cybercriminals, like the group LockBit, often resurface on new platforms despite disruptions to their operations.
Callow emphasizes the urgent need for stringent measures, such as an outright ban on ransom payments. He suggests that this would not only reduce payments to cybercriminals but also provide better insights into the prevalence of attacks and the effectiveness of strategies to combat them.
Charleston, on the other hand, argues for a more nuanced approach. He highlights the critical role that ransom payments can play in enabling affected organizations to recover their data and resume operations.
Despite their differing views on ransom payments, both experts stress the importance of implementing basic security measures and maintaining vigilance against evolving threats. They underscore the dynamic nature of cybersecurity, where constant adaptation and multi-layered defense mechanisms are essential to safeguard organizations against increasingly sophisticated attacks.
