Cybersafety Sentinel May 2022 Week 4

Claudiu’s Top Post

Extortion by any other name…
New ransomware promises to decrypt victim data and relinquish control of infected systems in exchange for …. good deeds?
Read More.

CRTC and User-Generated Content

The chair of the Canadian Radio-television and Telecommunications Commission says a federal bill would give it power to regulate user-generated content, such as homemade videos posted on YouTube. Benzie accused the federal government of being misleading by claiming the bill would not capture user-generated content. The CRTC chair spoke about the bill at a House of Commons heritage committee on Wednesday.
Scott told MPs that the bill, in its current form, would allow the CRTC to regulate user-generated content. Michael Geist, the University of Ottawa’s Canada Research Chair in internet law, said user-generated content is not “”out of the bill.
Read More.

Sextortion’ Causes Teen Suicide

Within hours, the 17-year-old, straight-A student and Boy Scout had died by suicide.
One challenge for the FBI: many victims of sextortion do not report the incidents to law enforcement. But investigators urge victims to quickly contact law enforcement, either online or at their local FBI field office.
“The most important thing that a parent should do with their teen is try to understand what they’re doing online,” she said. “You want to know when they’re going online, who they’re interacting with, what platforms they’re using.
Read More.

Russia’s Cyberwarriors Struggling

“There’s been probably spillover effects in some cases, but we haven’t seen anything that is directly targeted at the Canadian infrastructure or Canadian ecosystem.”
“CSE has been sharing valuable cyber threat intelligence with key partners in Ukraine and continues to work with the Canadian Armed Forces in support of Ukraine.” Dehghantanha said Canada should tighten its requirements for private companies that manage critical infrastructure. Foreman said the CSE is in constant contact “with Canadian critical infrastructure partners via protected channels,” beyond what is seen in its public advisories.
Read More.

Breach at Scarborough Hospital Network

The Scarborough Health Network has issued a public notice regarding an incident involving unauthorized access to data contained on “several” of its servers.
The breach impacted servers with patient data from Birchmount Hospital, Scarborough General Hospital, Centenary Hospital, as well as Ajax Pickering Hospital prior to its amalgamation under Lakeridge Health.
The breach has been reported to the Office of the Information and Privacy Commissioner of Ontario. The Scarborough Health Network has set up a resource page for those who may have been impacted by the breach at the following link.
Read More.

EdTech Companies Shared Kids’ Information

Of the 164 EdTech products reviewed, 146 appeared to engage in data practices that put children’s rights at risk, contributed to undermining them, or actively infringed on these rights. These products monitored or had the capacity to monitor children, in most cases secretly and without the consent of children or their parents, in many cases harvesting data on who they are, where they are, what they do in the classroom, who their family and friends are, and what kind of device their families could afford for them to use.
Read More.

Canada ‘not ready’ for Security Threats

The Canadian government is not ready to handle an increasingly dangerous national security environment, a report by former senior national security officials warn.
It’s the latest in a series of increasingly vocal warnings that Ottawa’s national security framework is not prepared to deal with the challenges of modern security threats, including economic espionage, foreign interference in domestic politics and cyber attacks. “As a country, we urgently need to rethink national security. Canada, not just its governments, but its people, have not always taken national security seriously,” said Vincent Rigby, who advised Prime Minister Justin Trudeau on national security issues, in an interview with Global News.
Read More.

Toronto School Wins Cybersecurity Competition

For the second year in a row the same six-member team from a Toronto high school has won the annual CyberTitan cybersecurity competition for students from Canadian middle and high schools. As in the previous two years of the competition, teams competed virtually because of the pandemic.
The second-place team members each received a $500 Amazon gift card, while the third-place team members each received a $250 Amazon card. Unavailable for Legal Reasons, from William Lyon Mackenzie Collegiate Institute, Toronto FalconTech Post Mortem, from Centre Wellington District High School, Fergus, Ont.
Morpheus, from Centre Wellington District High School, Fergus, Ont.
Read More.

Calgary Charity Data Breach

A Calgary charity has confirmed to Global News it was the victim of an email data breach last fall. While awaiting a response, officials said they also initiated further measures to protect staff emails from this type of cyber attack, including two-step verification and email security education.
Friesen — who just completed a cyber security course with the province — isn’t all that shocked. “Cyber security is something we all need to be aware of.” “Cyber security is something we all need to be aware of.”
Read More.