Back to news

March 17, 2020 | Local, C4ISR, Security

Online 'phishing' attacks expected to target housebound staffers as COVID-19 spreads

It's a 'huge opportunity' for online crime, one expert warns

The number of "phishing" attacks meant to steal the online credentials of public servants and corporate sector employees now housebound due to the COVID-19 pandemic is on the rise, one cyber security expert warns.

Many attempts are being made against employees who are working from home on virtual private works (VPNs). Cyber experts are still gathering data to establish a direct correlation between the pandemic crisis and the increase in malicious activity.

But Rafal Rohozinski, chief executive officer of the SecDev Group of Companies, said this pandemic moment — when large numbers of employees are at home and receiving instructions from their workplaces on how to connect to internal networks — offers online thieves a "huge opportunity."

Federal government and corporate sector systems were never designed to support a sudden, mass migration of employees from offices to their homes, he said.

"The opening that creates for those who want to wreak havoc through ransomware and malware is really, really significant," said Rohozinski. "And I don't think we're anywhere near prepared for that.

"What we're seeing is an increase in phishing being used as a means to get people's credentials."

U.S. Health Department attacked

The U.S. Health and Human Services Department's website was hit by a cyber attack over several hours on Sunday, an incident which involved overloading its servers with millions of hits.

Officials said the system was not penetrated, although media reports in Washington described it as an attempt to undermine the U.S. government's response to the coronavirus pandemic — and may have been the work of a foreign actor.

Rohozinski said that while the facts are not all in yet, his "professional guess" is that there's a link between the attack and the COVID-19 crisis.

Last week, Canada's top military commander warned that he'd seen recent indications the country's adversaries intend to exploit the uncertainty, confusion and fear generated by the pandemic.

Gen. Jonathan Vance, chief of the defence staff, was not specific about the potential threats — but experts say they could range from hacking to online disinformation campaigns aimed at discrediting the federal government's response.

Rohozinski said he's concerned about the federal government's technical capacity to support thousands of employees on private networks.

"Everybody's moving on to VPNs. Everybody," he said. "This is an enormous pinpoint and an enormous vulnerability."

Federal Digital Government Minister Joyce Murray's office was asked for a response Monday, but was unable to provide an immediate comment.

Many of the country's leading information technology companies are part of the Canadian Cyber Threat Exchange (CCTE), a nonprofit centre where companies can swap information and insights. A CCTE spokeswoman said the corporate sector is better prepared to face the challenges posed by the mass movement of employees to home networks.

Still, there is reason for concern.

"Given we are moving people to work from home now, companies need to ensure that the work from home environment is as safe as the corporate environment and that people are trained to notice these phishing campaigns, just like they were in the corporate environment," said Mary Jane Couldridge, director of business development at the CCTE.

"It's a matter of keeping our community aware of what is impacting Canada daily so we know how to react to it and prevent it from spreading — and not chase rainbows."

Most corporations have plans they'll activate now to cover the wholesale movement of employees to networks outside of the office, she added.

https://www.cbc.ca/news/politics/online-hacking-phishing-covid-19-coronavirus-1.5499725

On the same subject

  • Call for Foreign Comparative Testing Proposals - Spring 2021

    March 15, 2021 | Local, Aerospace, Naval, Land, C4ISR, Security

    Call for Foreign Comparative Testing Proposals - Spring 2021

    The Office of the Undersecretary of Defense for Research and Engineering's Global Capability Programs Office scans for vendors in foreign countries that have innovative technologies that speak to: The US Department of Defense's Technology Modernization Priorities, including: AI; Biotechnology; Autonomy; Cyber; Directed Energy; FNC3 (Fully Networked Command, Control, and Communications); Microelectronics; Quantum Science; Hypersonics; Space; 5G; Readiness and Joint Lethality in Contested Environments; Technologies satisfying urgent operational needs on a relevant fielding schedule; and/or Technologies that provide significant life cycle savings. Interested vendors may send their product data sheets and an FCT template to Colonel Stephen MacDonald, Defence Cooperation Attaché at the Embassy of Canada to the United States, at Stephen.MacDonald7@forces.gc.ca NLT 30 April 2021. A blank FCT template and an example of an FCT template are attached. Colonel MacDonald will compile the data sheets and FCT templates, and will forward them to the Global Capabilities Program Office. The Global Capabilities Program Office will then disseminate the vendor product data sheets and the FCT templates to the U.S. Armed Services and Agencies to gauge their interest. The Global Capabilities Program Office will inform Colonel MacDonald of the technologies that have peaked the interest of the U.S armed services and agencies. The vendors of these technologies will be asked to prepare a 20-minute presentation (including questions and answers) on their innovative technologies. We are aiming to schedule the presentations for the last week of May. The plan for the presentations will be announced under separate cover. Following the presentations, U.S. armed services and agencies will contact vendors if they continue to have an interest in their technologies. At that point, the discussions will take place directly between the U.S. armed services/agencies and vendors. An information session from the Global Capabilities Program Office and U.S. Armed Service representatives may be held near the end of April, and is pending confirmation. The intent of the information session will be to provide an overview of the FCT program/process and the needs of U.S. armed services and agencies. Details of the information session will be announced under separate correspondence. In the meantime, a presentation on the FCT program can be found here. Questions may be addressed to Colonel Stephen MacDonald, Defence Cooperation Attaché, at Stephen.MacDonald7@forces.gc.ca and Mr. Bobby Tate, Trade Commissioner, Defence and Security, at robert.tate@international.gc.ca.

  • COVID-19 further delaying some overdue military procurements

    September 29, 2020 | Local, Aerospace, Naval, Land, C4ISR, Security, Other Defence

    COVID-19 further delaying some overdue military procurements

    Lee Berthiaume OTTAWA — While the federal government is pressing ahead with plans to buy billions of dollars worth of much-needed equipment for the Canadian Armed Forces, the Department of National Defence's top procurement official says COVID-19 is further slowing down some already delayed purchases. The past six months have seen a number of major milestones for Canada's beleaguered military procurement system, including last week's unveiling of the first of 16 new military search-and-rescue planes after 16 years of delays and controversy. Procurement officials are also now reviewing three bids that were received from fighter-jet makers at the end of July as Canada inches closer to selecting a replacement for the aging CF-18s following more than a decade of political mismanagement. The list of recent successes also includes Halifax-based Irving Shipbuilding having delivered the first of six new Arctic offshore patrol vessels in late July, while progress has been made on a number of other files, such as the long-overdue purchase of new engineering vehicles for the Army. Yet some of those milestones would have been achieved earlier had it not been for COVID-19. And Troy Crosby, the Defence Department's assistant deputy minister of materiel, acknowledges many other projects are being affected as well. That includes the more than 100 military procurements — roughly half of them dealing with new equipment and the rest focused on building new infrastructure on Canadian Forces bases across the country — that were listed as already delayed before the pandemic hit. "COVID didn't speed anything up," Crosby said in an interview with The Canadian Press. "I think everybody would understand that that's going to have some impact. And exactly what that impact is difficult to tell right now." Delays in military procurements can have several impacts. In some cases such the CF-18s, the Canadian Armed Forces is being forced to keep using equipment that was supposed to have been retired years ago. In others, delays drive up the cost of the new purchases due to inflation. The projects most likely to be delayed due to COVID-19 are those in production, Crosby said. Examples include the construction of new naval ships by Irving and Seaspan ULC in Vancouver, which have had to adopt physical distancing and other COVID-19 measures at their shipyards. "For the projects that are at a stage where the work is office-based ... once we got over that initial hump as everybody had to as we moved toward a remote-work posture, the work continued," said Crosby. "If you're in a shipyard and you're trying to advance the production of a ship given all of the physical distancing requirements and the health and safety considerations, that's challenging." Crosby has previously argued much of the frustration around military procurement is the result of unrealistic expectations born of a lack of understanding and appreciation for how the system — which is dealing with more projects than at any time in recent history — actually works. COVID-19 has also prompted speculation the Liberal government could start cutting back on its promise, unveiled in 2017, to spend $553 billion on the military over the next 20 years. Defence Minister Harjit Sajjan told The Canadian Press earlier this month that the funding is "secure." Asked about the spending plan — which is contained in the Liberals' defence policy and known as Strong, Secure, Engaged — Crosby said: "Strong Secure Engaged continues to be our focus and it laid out a program of work and we're trying to get that program of work delivered. "It's been that way right through this whole COVID situation. That hasn't changed anything. ... The people in the materiel group, the people we're working with across government, we're all seized with the program forward." This report by The Canadian Press was first published Sept. 28, 2020. https://www.kamloopsthisweek.com/news/covid-19-further-delaying-some-overdue-military-procurements-1.24211049

  • Canada changing rules of competition for $19B fighter jet fleet to allow consideration of F-35: sources

    May 10, 2019 | Local, Aerospace

    Canada changing rules of competition for $19B fighter jet fleet to allow consideration of F-35: sources

    David Pugliese, Ottawa Citizen The Canadian government is changing the terms of the $19-billion competition to replace its aging fleet of fighter jets to allow the U.S. to enter its F-35 stealth fighter. The changes will allow for a more flexible approach in determining the value of the benefits bidders offer to Canadian defence firms, industry sources say, and come after a series of discussions with the U.S. government and threats by the Pentagon to withdraw the jet from consideration. Under the current terms, bidders were required to offer industrial benefits to Canada as part of the competition. That system, which would have disadvantaged the F-35, will now be amended, sources say. But those companies that do guarantee work for Canadian firms will receive more consideration under the new rules. U.S. officials had warned that the agreement Canada signed to be a partner nation in Lockheed Martin's development of the F-35 prohibits those partner nations from imposing requirements for industrial benefits in fighter jet competitions. “We cannot participate in an offer of the F-35 weapon system where requirements do not align with the F-35 Partnership,” U.S. Navy Vice-Adm. Mathias Winter told Canadian officials in a letter sent in December. Under the agreement, companies from the partner nations are eligible to compete for work on the F-35s, and contracts are awarded on a best-value basis. Over the last 12 years, Canadian firms have earned more than $1.3 billion in contracts to build F-35 parts. In a statement issued last week, Lockheed Martin Canada said that hundreds of Canadian jobs had been created by work on the jet. The firm noted that it continued to provide feedback to the U.S. government, which is involved with Canada in government-to-government discussions on the fighter jet program. The competition to win the Canadian contract for a fleet of 88 new fighter jets was launched on Dec. 12, 2017 and at this point four fighter jets are expected to be considered. Those include the F-35, the Super Hornet, the Eurofighter Typhoon and the Gripen. The Canadian government expects to award the contract in 2022. A request for bids for the new jets was scheduled to be released in conjunction with the CANSEC defence trade show in Ottawa at the end of the month, with bids to be evaluated by 2021. However, the government now admits that schedule is risky. In its latest update on major equipment projects the Department of National Defence said “The approved schedule is considered very aggressive,” and that “The project team is managing a number of risks which have the potential to impact schedule.” The document doesn't outline the specific risks but DND officials have acknowledged that figuring out how to deal with industrial benefits linked to the project could cause delays. The delivery of the first of the jets is expected in the mid-2020s, with the full capability available in the early 2030s, according to the DND document. The plan to purchase used Australian F-18s in the interim, the first already delivered, is also outlined in the document. It noted the final delivery of those jets is set for the end of 2021. https://nationalpost.com/news/canada/canada-changing-rules-of-competition-for-19b-fighter-jet-fleet-to-allow-consideration-of-f-35-sources

All news