Canada’s critical infrastructure an ‘almost certain’ target for cybercrime

globalnews.ca:

ransomware attacks, with organized cybercrime activity posing a threat to national security, economy and critical infrastructure, officials are warning.The Canadian Centre for Cyber Security released a report Monday, saying that over the next two years, “financially-motivated cybercriminals will almost certainly continue to target high-value organizations in critical infrastructure sectors in Canada and around the world.”In particular, the agency categorized ransomware — in which digital files are held hostage or encrypted until a fee is paid — as the “most disruptive” form of cybercrime facing Canada.“Ransomware has become one of the most devastating types of cybercrime, impacting individuals, businesses, and government agencies,” the report said.“Over the next two years, we assess that cybercrime activity in Canada will very likely increase.”The warnings come amid a year that has seen dozens of high-profile cyberattacks and ransomware targeting major businesses, healthcare networks, law enforcement and governments around the world.Among all the ransomware incidents in Canada, the top sectors targeted in 2022 were manufacturing, businesses and professional services, information and communication technology, retail and consumer goods, and healthcare and pharmaceuticals.Meanwhile, the top ransomware variants included LockBit, Conti, BlackCat/ALPHV, Black Basta and Karakurt.The report assessed Russia, and to a lesser degree Iran, as likely “safe havens” for cybercriminals operating against Western targets.“We assess that Russian intelligence services and law enforcement almost certainly maintain relationships with cybercriminals and allow them to operate with near impunity,” the centre said.Canadian retailers and