Skip to content

Canada's Business and Tech Newsroom

  • Professional Subscription
  • Partnerships & Advertising
  • Licensing & Syndication
Log In Subscribe
Welcome,
  • My Account
  • Log Out
  • Business
  • Tech
  • National
  • The Big Read
  • Briefings
  • Commentary
Search
Log In Subscribe
Welcome,
  • My Account
  • Log Out
News

Cyber attacks target Canada’s energy companies at nearly double the rate of other industries: Documents

VANCOUVER — Cyber attacks target companies in Canada’s energy and utilities sector at nearly double the rate of all other industries combined, according to documents obtained by The Logic, creating “significant consequences for national security, public safety and the economy.” 

News

Cyber attacks target Canada’s energy companies at nearly double the rate of other industries: Documents

By Aleksandra Sagan
A wide shot of a pipeline construction area, with an excavator using its boom to lift a length of pipe.
Construction of the Trans Mountain pipeline is seen under way in Kamloops, B.C., in September 2020. Photo: The Canadian Press/Jonathan Hayward
Jun 21, 2021
A A
A Small A Medium A Large
Share

Gift

Share

VANCOUVER — Cyber attacks target companies in Canada’s energy and utilities sector at nearly double the rate of all other industries combined, according to documents obtained by The Logic, creating “significant consequences for national security, public safety and the economy.” 

The sector “continues to be one of the most targeted sector[s] by cybercriminals,” reads a memo to the deputy minister of Natural Resources Canada (NRCan) which The Logic obtained via an access-to-information request. Government records show NRCan received the memo in November 2020.

Talking Point

Companies in Canada’s energy and utilities sector are among “the most targeted” by cybercriminals, according to documents obtained by The Logic. Thirty-nine per cent of respondents from the sector to a Statistics Canada survey said they were impacted by an incident in 2019, nearly double the average across 23 sectors surveyed. “Cybercriminals will almost certainly continue to target” the sector, causing concerns for “national security, public safety and the economy.”

In early May, hackers forced Colonial Pipeline, the largest refined products pipeline in the country with roughly 8,850 kilometres covered, to take some of its operations offline. The company said a group called DarkSide demanded it pay a ransom of 75 bitcoins. Colonial Pipeline’s CEO confirmed the company paid US$4.4 million and the FBI later recovered 63.7 bitcoin valued at about US$2.3 million, part of the alleged ransom payment.

It’s an example of how hackers increasingly target not only corporations whose security may be lax, but also those with “mission-critical operations that cannot risk stoppages, or [have] a clear ability to pay up,” CIBC analyst Stephanie Price wrote in a note in the wake of the Colonial cyberattack. 

In Canada, 39 per cent of businesses in the energy and utility sector that responded to a Statistics Canada survey said they were impacted by a cyber security incident in 2019. That’s nearly double the average—21 per cent—across the 23 industries surveyed. (The more-detailed findings come from Statistic Canada’s survey of about 9,300 businesses with at least 10 employees between January and March 2020 from industries including construction, utilities, manufacturing and retail trade. A 2017 survey provided baseline data for future reference.)

Three of the industry’s four subsectors—pipeline transportation; oil and gas extraction; and electric power generation, transmission and distribution (electricity)—reported the highest share of incidents across all sectors at nearly 65 per cent, nearly 42 per cent and about 32 per cent, respectively. Eighteen per cent of businesses in the remaining subsector, natural gas distribution, reported incidents.

NRCan did not provide comment on the memo before publication.

“Typically hackers want to go after businesses or industries that are either easy targets or, even if they are difficult targets, they do see a potential of getting some sort of a financial gain,” said Vivek Gupta, partner of cybersecurity and digital forensics at BDO Canada. “I think it’s a combination of both in the case of oil and gas.” 

The companies tend to be easy targets because they operate two information technology systems, he said. The first includes traditional email and financial systems. The second is an operational technology system that was traditionally isolated and hackers had to be onsite to infiltrate it. However, the COVID-19 pandemic forced companies to change these systems—which often don’t have the latest security provisions—to be accessed remotely, giving hackers a new way in.

Secondly, “attackers are going to attack organizations that have a lot to lose,” he said, like in  the Colonial Pipeline attack where the level of disruption can force the company’s hand to pay the ransom.

Hackers may target Canadian companies to create disruptions and make out with a bounty, as well, according to the note. In fact, businesses in the sector reported attacks against them most frequently, or 25 per cent of the time, were attempts to steal money or demand ransom payments. That’s 16 per cent higher than across all sectors. However, only three per cent of all businesses attacked said they paid a ransom.

The problem for the industry is not likely to disappear. The Canadian Centre for Cyber Security believes “that ransomware directed against Canada will almost certainly continue to target large enterprises and critical infrastructure providers,” according to its 2020 national cyber threat assessment report. “These entities cannot tolerate sustained disruptions and are willing to pay up to millions of dollars quickly to restore their operations.” It also raised alarms about state-sponsored actors, such as those in China, Russia, Iran and North Korea. These “are very likely attempting to develop cyber capabilities to disrupt Canadian critical infrastructure, such as the supply of electricity, to further their goals,” it said. However, it’s “very unlikely” they’ll intentionally disrupt these systems without international hostilities present.

The memo acknowledges that “cybercriminals will almost certainly continue to target Canada’s energy and utilities sector.” While ransom is one motivating factor, there are other risks beyond lost profits. Hackers may target the sector to “steal intellectual property and proprietary business information, and obtain personal data about customers. Malicious actors may also intentionally seek to disrupt energy operations and cause power outages, disruptions to oil and natural gas supplies or physical damage to infrastructure.” 

These kinds of disruptions can cause, for example, gas shortages at the pumps and price increases, as the company may have to slow down production due to storage constraints until they sort out the distribution problem, said Gupta. 

Companies in the sector are becoming more proactive, rather than reactive, in dealing with cybersecurity now, based on his experience. They tend to conduct risk assessments and hire third-parties to do so-called ethical hacks to expose potential weaknesses, he said, rather than wait to deal with the problem only if they are attacked. The memo notes that companies in the sector outperform others on security measures, being more likely to use anti-malware software, as well as network and email security.

Gift the full article

“Although, there’s still a lot more work to be done,” said Gupta, “I don’t necessarily see that clients are doing everything that they need to do to protect themselves.” The memo acknowledges that many businesses in the sector don’t use mobile security, hardware and asset management, and web security. Gupta would like to see companies do more than ad-hoc cybersecurity, but have a strategy that allows them to continually assess and evolve.

NRCan, which contributed $100,000 to the $1.5-million survey project, will use the findings “to identify gaps, and inform policy and program development.” It plans to continue prioritizing cybersecurity “by deepening collaboration with domestic and international partners through a number of shared initiatives, and enhancing the cyber security of Canada’s domestic and cross-border energy infrastructure.”

— With files from Claire Brownell in Toronto

#Colonial Pipeline #cyberattacks #NRCan #ransomware

Loading...

Thanks for sharing!

You have shared 5 articles this month and reached the maximum amount of shares available.

Close
This account has reached its share limit.

If you would like to purchase a sharing license please contact The Logic support at [email protected].

Close
Want to share this article?

Upgrade to all-access now

Close
Gift the full article!

You have gifted 0 article(s) this month and have 5 remaining.

Copy link and gift
Copy Link
Email to a friend
Send Email
Gift on Social Media

Recipients will be able to read the full text of the article after submitting their email address. They will not have access to other articles or subscriber benefits.

A wide shot of a pipeline construction area, with an excavator using its boom to lift a length of pipe.

Photo: The Canadian Press/Jonathan Hayward

Most Popular This Week

Exclusive

PCO clerk Sabia stayed on Mastercard Foundation board for a year with no conflict screen

By Joanna Smith
Nakisa CEO Babak Varjavandi in a screencapture from the floor of a tech show. He's wearing a suit jacket and open-collared shirt.
News

Canadian firms are ready to help with digital sovereignty. Their challenge is getting approved

By Laura Osman
A shot of a small rocket sitting on a launch pad attached to its launch equipment. The backdrop is open sea and a light blue sky.
News

Canada’s submarine decision just paid off for Nova Scotia’s spaceport

By David Reevely
An aerial photo of Kearny mine, a mine surrounded by dense forest, with terraced rock walls that surround a deep blue body of water.
News

Canada bets on graphite as allies scramble for critical minerals

By Anita Balakrishnan

In-depth, agenda-setting reporting

Great journalism delivered straight to your inbox.

A shot of a sign bearing the Pfizer logo, with a lowrise office building in the background.
News

So far, foreign-owned firms have dominated Buy Canadian contracts

By Laura Osman

Briefing

Anthropic commits $10M worth of Claude to Canadian research centres

By Murad Hemmadi   |   Jul 14, 2026 | 3:36 PM ET

Thomson Reuters sells majority stake in book business for US$500M

By Anita Balakrishnan   |   Jul 14, 2026 | 3:13 PM ET

Sabia upholding ‘highest standards of integrity’ after double duty with Mastercard Foundation, PMO says

By David Reevely   |   Jul 14, 2026 | 2:19 PM ET

Best business newsletter in Canada

Get up to speed in minutes with insights and analysis on the most important stories of the day, every weekday.

Exclusive events

See the bigger picture with reporters and industry experts in subscriber-exclusive events.

Membership in The Logic Council

Membership provides access to our popular Slack channel, participation in subscriber surveys and invitations to exclusive events with our journalists and special guests.

Recent Popular Stories

Commentary: Quebec Ink

Quebec’s era of endless, cheap electricity is coming to an end

By Martin Patriquin   |   Jul 6, 2026
A cityscape featuring two tall buildings; the right one has a large orange "Q" logo and a Quebec flag atop. The sky is clear and blue.
Exclusive

PCO clerk Sabia stayed on Mastercard Foundation board for a year with no conflict screen

By Joanna Smith   |   Jul 13, 2026
News

Canada’s submarine decision just paid off for Nova Scotia’s spaceport

By David Reevely   |   Jul 8, 2026
A shot of a small rocket sitting on a launch pad attached to its launch equipment. The backdrop is open sea and a light blue sky.
News

Canada bets on graphite as allies scramble for critical minerals

By Anita Balakrishnan   |   Jul 7, 2026
An aerial photo of Kearny mine, a mine surrounded by dense forest, with terraced rock walls that surround a deep blue body of water.
News

Meta to spend $13B on sprawling Alberta data-centre complex

By Meghan Potkins   |   Jul 8, 2026
An aerial-style rendering of a massive data centre on a prairie landscape of farm fields and trees.
News

Alberta wants to be a model for government AI and power Canada-wide adoption

By Murad Hemmadi   |   Jul 10, 2026
A shot of Nate Glubish at a lectern, against a backdrop of exposed brick partly covered by a white film screen.

Canada's most influential executives and policymakers are reading The Logic

  • CPP Investments
  • Sun Life Financial
  • C100
  • Amazon
  • Telus
  • Mastercard
  • bdc
  • Shopify
  • Rogers
  • RBC
  • General Motors
  • MaRS
  • Government of Canada
  • Uber
  • Loblaw Companies Limited
logic-logo

Canada's Business and Tech Newsroom

100% human-crafted journalism

Newsroom

  • News Tips
  • AI Policy
  • Editorial Disclosures
  • Story Pitches

Company

  • About Us
  • Terms of Service
  • Privacy Statement
  • Corporate Information

Contact

  • Contact Us
  • Advertise
  • FAQs
  • Work at The Logic

© 2026 The Logic Inc. All Rights Reserved.

Trusted by leaders

Error

Account creation failed.

Please email us at [email protected].

Create Account

[wppb-register form_name=”cozmo-registration-form-for-modal”]

I do have an account
Login
or

[wppb-login]

I don’t have an account