OTTAWA: Canadian businesses operating in critical infrastructure sectors would be required to report cyber attacks to the federal government and would have to fortify their cyber systems under a new law introduced on Tuesday.
"There was a lot of thought given into identifying which sectors are vital to national security and public safety," Public Safety Minister Marco Mendicino told reporters, adding that operators of critical infrastructure would be identified after consulting the sectors. "This new legislation ... will help both the public and private sectors better protect themselves against cyberattacks," Mendicino said.
Hacking incidents are on the rise, but they remain under-reported because companies are not required under current laws to disclose cyber attacks when they happen, a senior official said.