Search here...
SUBSCRIBE
Security

Canada cyber centre issues caution after group from India issues threat

Share post:

Howard Solomon
Howard Solomon
2 min.

The Canadian government’s cyber authority has issued a warning to IT administrators here to watch for attacks, after a group or individual claiming to be from India issued a retaliation threat over allegations India may have been behind the assassination of a Canadian man advocating for an independent Sikh state.

“CSE [the Canadian Security Establishment] and its Canadian Centre for Cyber Security (Cyber Centre) have observed that geopolitical events often result in an increase in disruptive cyber campaigns. We continue to monitor for any developing cyber threats and share threat information with our partners and stakeholders to help prevent incidents,” says the statement.

“However, the Cyber Centre’s primary focus is on defending Government of Canada networks from cyber threats. We focus on the type of threat, not where the threat originates. For that reason, we generally do not provide statistics, or information on reporting trends.

“We encourage Canadians and Canadian organizations to be aware of cyber threats and to remain vigilant.”

The statement came after IT World Canada asked the Cyber Centre if it had received reports or seen evidence of hacking groups based in India launching recent retaliatory attacks here.

According to Brett Callow, a B.C.-based threat analyst with Emsisoft, a group calling itself the Indian Cyber Force posted a threatening message last week on the X messaging platform. It says, “Get ready to feel the power of IndianCyberForce attacks will be launching on Canada cyber space in the coming 3 days. It’s for the mess your started.” [This is the actual wording of the posting]

A website with a .ca suffix that appears to belong to a Canadian dental clinic has been defaced with the message, “Hacked by Indian Cyber Force.” However, the real website, whose address begins with ‘www,’ isn’t affected. The defaced website has a similar name and could be a spoof. Or the dental clinic’s site was defaced and it quickly set up a new one. IT World Canada asked the site on Sunday for comment. None was received by our deadline.

“At this point it’s impossible to say whether this is an organized hacktivist operation or a lone high school kid,” Callow said of the threat. “Whatever the case, even the most unsophisticated cyberattacks have the potential to cause real-world problems, as the disruption caused by the recent DDoS attack on the Canadian Border Services Agency demonstrated.
“Given current geo-political tensions, all Canadian organizations should assume that they may be targeted and ensure their shields are fully up.”
As for why a dental website would be targeted, Callow suspects it was random: The site came up after a scan for vulnerable Canadian websites.
Website administrators must ensure their sites are fully patched and that admin access is restricted. That includes making sure management consoles aren’t available on the public internet unless shielded with VPN access and multifactor authentication for logins. Websites should also be prepared to deal with DDoS attacks.
The post Canada cyber centre issues caution after group from India issues threat first appeared on IT World Canada.
Howard Solomon
Howard Solomonhttps://www.itworldcanada.com
Currently a freelance writer, I'm the former editor of ITWorldCanada.com and Computing Canada. An IT journalist since 1997, I've written for several of ITWC's sister publications including ITBusiness.ca and Computer Dealer News. Before that I was a staff reporter at the Calgary Herald and the Brampton (Ont.) Daily Times.

SUBSCRIBE NOW

Related articles

Podcasts

Cyber Security Today, May 3, 2024 – North Korea exploits weak email DMARC settings, and the latest Verizon analysis of thousands of data breaches

This episode reports on warnings about threats from China, Russia and North Korea, the hack of Dropbox Sign's infrastructure
Podcasts

Hashtag Trending for World Password Day, Thursday, May 2nd, 2024

Security firm Okta warns of an unprecendented password stuffing attack that is piggybacking on regular user’s mobile and...
Security

Google Chrome’s new post-quantum cryptography causes connection issues

The latest update to Google Chrome, version 124, which integrates a new quantum-resistant encryption mechanism, has led to...
Security

UK legislation bans weak passwords

Starting Monday, the UK will enforce new laws banning the sale of devices with weak default passwords such...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways

Subscribe Now

Tech News Day is a daily publication featuring key news stories about technology and how it affects businesses.

Most Popular Categories
Tech News Delivered

New, Relevant Tech Stories. Our selection is done by industry professionals - executives like you who pick the top stories for that day. Our writers summarize them to give you the key takeaways

Subscribe