Canada’s Communications Security Establishment (CSE) conducted state-authorized cyberattacks last year. Their targets? Drug traffickers, violent extremists, and a ransomware gang. The details are in the CSE’s annual report.
Three specific foreign “active cyber operations” are described. One operation targeted a ransomware-as-a-service gang whose infrastructure was used to attack Canadian healthcare, transportation, and business sectors. The CSE rendered their systems inoperable and deleted data. Direct and effective.
Another operation focused on cybercriminals brokering fentanyl precursor chemicals. The CSE disrupted their operations, diminishing their capabilities. A third took aim at an overseas extremist group, undermining their credibility and recruitment efforts.
Beyond those three, the agency also conducted technical disruptions against 10 significant ransomware gangs targeting Canada, plus a defensive operation against a phishing campaign aimed at federal institutions.
These disclosures are rare. Intelligence agencies don’t usually talk about offensive operations. But the CSE’s annual report offers a glimpse into how state-backed hackers are being used to combat threats that traditional law enforcement can’t reach. It’s a different kind of warfare — and Canada’s showing it’s willing to play.
