Cyber Incident Victim: Manitoba Justice
Date:
Dec 2024
Location:
Canada
Summary
A cyberattack targeted a third-party service provider responsible for collecting overdue court fines on behalf of Manitoba Justice, though no evidence of compromised personal information was identified. The incident prompted collaboration with law enforcement, cybersecurity agencies, and the provincial ombudsman, while the provider engaged a cybersecurity firm for forensic review and mitigation efforts. The province is assessing the scope of potential impacts on individuals with outstanding fines and has maintained alternative payment channels, including in-person court visits and dedicated phone lines for inquiries.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 0 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On December 1, 2024, Manitoba Justice disclosed a cybersecurity incident affecting a third-party service provider responsible for collecting overdue court-ordered fines in the province. The provincial government issued a news release confirming the cyberattack but provided no specific details regarding the attack’s timing, duration, or technical nature. Authorities emphasized there was no evidence indicating the compromise of Manitobans’ personal information at the time of disclosure. The incident was reported to multiple entities, including law enforcement agencies, the Canadian Centre for Cyber Security, and the Manitoba Ombudsman, reflecting a coordinated response to assess legal and regulatory implications. The unnamed service provider engaged a leading cybersecurity firm to conduct an independent forensic review and impact assessment, collaborating with provincial officials to contain the incident and mitigate potential data exposure risks. Manitoba Justice stated it was still evaluating the scope of the breach, particularly the number of individuals with outstanding fines potentially affected, but assured the public that further notifications would follow if the investigation revealed compromised data.
The province and the third-party provider prioritized containment measures to prevent additional data exposure, though no specifics about these actions were disclosed. Manitoba Justice directed citizens with overdue fines to in-person court visits or a general phone line (204-945-3156) for payment inquiries, while separate contact information (204-945-6414) was provided for collections-related questions. The release did not describe operational disruptions to fine collection services or confirm whether the attack impacted other systems beyond the third-party provider. No threat actor attribution, ransom demands, or attack vectors were disclosed. The absence of confirmed data compromise shaped the province’s communications strategy, focusing on transparency about investigative progress while withholding unverified details. Ongoing coordination between the provider, cybersecurity experts, and provincial authorities formed the basis of the response, with no further public updates reported in the immediate aftermath of the initial disclosure.