The Toronto Zoo is reporting that it is currently grappling with a ransomware/cyber incident that was initially detected on Jan. 5. Immediate measures were taken by Zoo staff to assess the extent of the incident.
Officials, according to the Zoo, are diligently investigating the potential impact on guests, members, and donor records. It has been confirmed that the zoo does not currently store any credit card information.
Despite the cyber incident, animal well-being, care, and support systems remain unaffected, allowing normal zoo operations to continue, including remaining open to guests. The zoo’s website is also unaffected, ensuring uninterrupted online ticket purchases at torontozoo.com.
Your Toronto Zoo is currently experiencing a ransomeware/cyber incident. We are investigating the impact, if any, to our guests, members and donor records. We can confirm we do not currently store any credit card information. Once we have more information we will share it broadly pic.twitter.com/FgDIp8vapt
— The Toronto Zoo (@TheTorontoZoo) January 8, 2024
Collaborating with the City of Toronto’s Chief Information Security Office and third-party cybersecurity experts, the zoo is actively working to resolve the situation. The incident has been reported to the Toronto Police Services. Updates on the situation will be provided as more information becomes available.
“Unfortunately, these incidents are becoming more and more common and we are grateful we took steps over the past few years to upgrade our technology infrastructure,” wrote Toronto Zoo officials, in a statement. “Thank you for your patience and understanding as we work through this incident.”
The Toronto Public Library has its own cybersecurity incident that unfolded last fall, which was identified as a ransomware attack.
“Unfortunately, it’s common and becoming more common. We’ve seen major ransomware attacks against public institutions in Canada, including hospitals. educational institutions, both at the secondary, and at the university level. We’ve seen major ransomware attacks in North America against energy infrastructure,” said cybersecurity expert Charles Finlay, the founding executive director of the Rogers Cybersecure Catalyst at Toronto Metropolitan University. “We’ve seen major attacks against governments and other kinds of public institutions. Ransomware is a multibillion dollar international industry. It’s a very profitable, illegal business. And, a major challenge for organisations of all kinds and for civil society, law enforcement, and all of us.”
Finlay explained that ransomware attackers at usually based overseas in jurisdictions without much enforcement.
“For example, we’ve seen significant attacks launched by ransomware gangs in Russia, North Korea, and Iran. And, obviously, law enforcement is not going to be able to to access those,” he explained. “But law enforcement in Canada is becoming much more active and is working with international partners in an effort to try to bring prosecutions against ransomware attackers and create a deterrent for this kind of attack, but it’s very difficult police work, and it’s a challenging environment.”