Canada's National Research Council network was recently breached by a “highly sophisticated Chinese state-sponsored actor,” according to a statement issued by office of the Canadian government's CIO, Corinne Charette.
Offering assurances that the NRC's networks “do not currently operate within the broader Government of Canada network” and that the government has “robust systems and tools in place” to detect and deal with threats, the CIO noted that the research council's networks have been isolated from the broader network “as a precautionary measure.”
According to the CIO's statement, there is currently no evidence that data was compromised beyond the NRC systems. The council has notified the country's privacy commissioner, begun to inform clients and stakeholders, and is, the CIO said, “building a new secure IT infrastructure.”