Skip to main content
The Globe and Mail
Get full access to globeandmail.com
Support quality journalism
Just $1.99 per week for the first 24weeks
Just $1.99 per week for the first 24weeks
The Globe and Mail
Support quality journalism
Get full access to globeandmail.com
Globe and Mail website displayed on various devices
Just$1.99
per week
for the first 24weeks

var select={root:".js-sub-pencil",control:".js-sub-pencil-control",open:"o-sub-pencil--open",closed:"o-sub-pencil--closed"},dom={},allowExpand=!0;function pencilInit(o){var e=arguments.length>1&&void 0!==arguments[1]&&arguments[1];select.root=o,dom.root=document.querySelector(select.root),dom.root&&(dom.control=document.querySelector(select.control),dom.control.addEventListener("click",onToggleClicked),setPanelState(e),window.addEventListener("scroll",onWindowScroll),dom.root.removeAttribute("hidden"))}function isPanelOpen(){return dom.root.classList.contains(select.open)}function setPanelState(o){dom.root.classList[o?"add":"remove"](select.open),dom.root.classList[o?"remove":"add"](select.closed),dom.control.setAttribute("aria-expanded",o)}function onToggleClicked(){var l=!isPanelOpen();setPanelState(l)}function onWindowScroll(){console.log("scroll");var l=isPanelOpen(),n=0===(document.body.scrollTop||document.documentElement.scrollTop);n||l||!allowExpand?n&&l&&(allowExpand=!0,setPanelState(!1)):(allowExpand=!1,setPanelState(!0))}pencilInit(".js-sub-pencil",!1);

Canada's Auditor General Michael Ferguson speaks during a news conference on the release of his report in Ottawa October 23, 2012.

CHRIS WATTIE/REUTERS

Even bankers no longer observe bankers' hours. So it is disconcerting to learn from Canada's Auditor General that employees at a centre in Ottawa responsible for monitoring cyber risks and alerting the government and private sector to threats to critical infrastructure adhere to an 8 a.m. to 4 p.m. weekdays-only routine. Were it only the case that cyber criminals, spies and hackers kept such a predictable schedule.

The Canadian Cyber Incident Response Centre (CCIRC) is so low profile that many businesses are unaware of its very existence. In fact, apparently some federal government departments are too. When hackers traced to China succeeded in penetrating Treasury Board and Finance Canada's systems in January, 2011, the centre was not even notified by the affected departments until more than a week later, according to the report released Tuesday.

Despite a decade of plans and promises to do better, the report found that only "limited progress" has been made in improving security of crucial networks. Ottawa announced last week it would add $155-million over five years to strengthen the centre's capacity – and this is welcome news. Last year, it made the Communications Security Establishment Canada officially responsible for reducing cyber threats against the government. Clearly more vigorous safeguards are needed, not least of them an evening shift at the CCIRC, but also better coordination among government agencies, and a higher level of rigour and surveillance around information technology security.

Story continues below advertisement

The A-G's report was released, coincidentally, the same month as details about the trial of Sub-Lieutenant Jeffrey Delisle. The two matters are unrelated except both speak to a blase attitude towards the safeguarding of sensitive information. The naval officer confessed to downloading intelligence files onto a floppy disc, transferring them to a memory stick on a second computer and breezily selling them to the Russian Embassy for $3,000 a month. How could such an unsophisticated security breach go unnoticed for four years inside an intelligence centre in Canadian Forces Base Halifax? "It's unbelievable," notes Wesley Wark, a security expert at the University of Toronto. "All the security safeguards broke down." The two episodes this week portray federal officials as hayseeds when it comes to protecting sensitive information, including that of our allies. Canada needs to do a better job fending off outside attempts to penetrate its networks and understand that cyber espionage can be as serious a problem as terrorism.

Report an error Editorial code of conduct
Due to technical reasons, we have temporarily removed commenting from our articles. We hope to have this fixed soon. Thank you for your patience. If you are looking to give feedback on our new site, please send it along to feedback@globeandmail.com. If you want to write a letter to the editor, please forward to letters@globeandmail.com.

Welcome to The Globe and Mail’s comment community. This is a space where subscribers can engage with each other and Globe staff. Non-subscribers can read and sort comments but will not be able to engage with them in any way. Click here to subscribe.

If you would like to write a letter to the editor, please forward it to letters@globeandmail.com. Readers can also interact with The Globe on Facebook and Twitter .

Welcome to The Globe and Mail’s comment community. This is a space where subscribers can engage with each other and Globe staff. Non-subscribers can read and sort comments but will not be able to engage with them in any way. Click here to subscribe.

If you would like to write a letter to the editor, please forward it to letters@globeandmail.com. Readers can also interact with The Globe on Facebook and Twitter .

Welcome to The Globe and Mail’s comment community. This is a space where subscribers can engage with each other and Globe staff.

We aim to create a safe and valuable space for discussion and debate. That means:

  • Treat others as you wish to be treated
  • Criticize ideas, not people
  • Stay on topic
  • Avoid the use of toxic and offensive language
  • Flag bad behaviour

Comments that violate our community guidelines will be removed.

Read our community guidelines here

Discussion loading ...

To view this site properly, enable cookies in your browser. Read our privacy policy to learn more.
How to enable cookies