Cyber Incident Victim: Centre public d'Action sociale de Waterloo

On October 17, 2023, the Centre public d’Action sociale de Waterloo (CPAS Waterloo) experienced a cybersecurity incident when an alert was triggered on one of its peripheral devices. The organization’s president, Raphaël Szuma, confirmed the attack necessitated immediate isolation of systems to prevent further compromise. CPAS Waterloo disconnected its network for approximately 24 hours to conduct monitoring, verification, and phased restoration of services. The federal Cyber Emergency Response Team (CERT) was notified promptly following the detection of the intrusion. Initial analysis indicated the attack did not result in unauthorized access to administrative or personal data, attributed to the effectiveness of existing firewall protections. The disruption paralyzed CPAS operations for nearly a full day, impacting service delivery during the outage.

CERT’s assessment validated CPAS Waterloo’s defensive measures and incident response actions, though the agency provided additional recommendations for enhancing future resilience. Szuma characterized the outcome as fortunate, emphasizing no data exfiltration occurred despite the severity of the attack. The incident prompted plans for internal audits to identify potential security improvements across CPAS systems and protocols. Operational recovery was completed within the 24-hour window, with services fully restored following verification of system integrity. The organization acknowledged the attack’s disruptive impact but reported no long-term data compromise or legal breaches attributable to the event.