Cyber Incident Victim: Alberta Innovates
Date:
Nov 2024
Location:
Canada
Summary
A cyberattack targeting Alberta Innovates resulted in unauthorized third-party access to the organization's network, prompting an ongoing investigation with cybersecurity experts. The Crown corporation resolved the resulting network disruptions swiftly but has not yet confirmed whether personal or proprietary data was compromised, emphasizing that privacy and security remain top priorities. Provincial authorities, including the office of the Technology and Innovation Minister, are providing support to the agency, which funds technological innovation initiatives across research and industry sectors.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
In early November 2024, Alberta Innovates—a provincial Crown corporation funding technological innovation through grants and programs—experienced a cyberattack causing network disruptions. The organization detected unauthorized third-party access to its systems, though officials did not disclose the attack's exact start date, initial detection method, or specific technical entry vectors. Spokesperson Dwayne Brunner confirmed the incident involved resolved "network issues," with all operational problems addressed by the time of public disclosure on November 1. Alberta Innovates engaged cybersecurity experts to investigate the breach's scope while collaborating with employees and stakeholders to assess potential data exposure. The corporation declined to confirm whether personal information (such as grant applicant details) or proprietary research data was compromised, citing the ongoing nature of the forensic investigation. Technology and Innovation Minister Nate Glubish’s office acknowledged the incident, with press secretary Jonathan Gauthier stating provincial cyber teams were assisting Alberta Innovates. No ransomware demands or explicit attacker motives were disclosed, and the Crown corporation emphasized prioritizing information security and privacy throughout its response.
The incident occurred amid heightened cybersecurity concerns across Alberta’s public sector, following a 2023 breach at the Alberta Dental Service Corp. that exposed 1.5 million residents’ data and a separate October 2024 attack disrupting Calgary Public Library services for weeks. While Alberta Innovates restored core network functions rapidly compared to the library’s prolonged outage, the organization withheld technical specifics about affected systems, data exfiltration evidence, or operational downtime duration. Impacts remained unclear regarding grant distribution delays, researcher collaborations, or intellectual property theft, though the corporation maintained public services throughout the incident. Response efforts focused on internal investigations rather than public attribution of threat actors, with no confirmed links to other regional attacks. Alberta Innovates committed to providing further details as its probe advanced, leaving stakeholders awaiting confirmation of potential data compromise risks. Provincial authorities monitored the situation without issuing broader alerts, reflecting the contained but unresolved nature of the breach investigation.