Cyber Incident Victim: Socadis
Date:
Dec 2023
Location:
Canada
Summary
A major Quebec book distributor experienced a complete operational shutdown following a suspected phishing campaign, disabling its website, phone systems, and email communications. The attack prompted isolation of internal systems to prevent propagation, critically disrupting services during the peak holiday sales period and risking inventory shortages across publishers and retailers. This marks the second significant cybersecurity incident in Quebec's book sector within the year, following a ransomware attack against another distributor that incurred substantial financial losses, intensifying industry calls for systemic security improvements.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 1 technique |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
On December 17, 2023, Socadis—one of Quebec’s largest book distributors, handling over one-third of the province’s book sales—experienced a complete operational shutdown following a suspected phishing campaign. The company’s website became inaccessible, its telephone systems ceased functioning, and email communications were disrupted. Socadis publicly confirmed the ongoing outage via a Facebook post on December 20, stating operations remained halted with no capacity to process orders and no estimated restoration timeline. Internal industry sources indicated the attack compromised Socadis’s IT infrastructure, prompting the company to proactively sever connections between its systems and those of partners to contain the threat. This containment measure explained the total disconnection of public-facing services. The company’s leadership declined media requests for additional details, leaving the precise attack vector and scope unverified.
The incident occurred during the critical holiday sales period, a peak revenue window for Quebec’s publishing sector. While most holiday shipments had already been delivered, industry representatives like Ulysse Travel Guides’ founder Daniel Desjardins warned of potential stock shortages if the outage persisted beyond four weeks, though January’s lower sales volume mitigated immediate financial damage. Socadis’s client base included prominent publishers such as Flammarion, Editis, Éditions de la Pastèque, and Ulysse, amplifying sector-wide disruption concerns. This marked the second major cyberattack on Quebec’s book industry in 2023, following a February ransomware incident targeting Indigo Books & Music that compromised customer data and cost $50 million in losses. Karine Vachon, Director General of the National Association of Book Publishers, acknowledged the attack had accelerated preexisting discussions about collaborative cybersecurity improvements among publishers, distributors, and booksellers. Socadis remained closed indefinitely as of December 20, with no public updates regarding recovery progress or forensic findings.