Canada stops sharing intel over privacy breach

January 28, 2016
Canadian Minister of National Defence Harjit Sajjan, seen on December 21, 2015, said the illegally collected information did not
Canadian Minister of National Defence Harjit Sajjan, seen on December 21, 2015, said the illegally collected information did not contain names or enough information to identify individuals

Canada's ultra-secret eavesdropping agency said Thursday it has stopped sharing intelligence with international partners after revealing it had illegally collected Canadians' metadata in sweeps of foreign communications.

In a report to parliament, the Communications Security Establishment (CSE) said the breach was unintentional and had been discovered internally in 2013.

A CSE official blamed a software flaw that resulted in sharing of metadata, used to identify, manage or route communications over networks that could identify Canadians.

The agency said the likelihood of this leading to any abuses was "low."

But as a precaution, the CSE suspended its sharing of metadata with its Five Eyes intelligence partners—Australia, Britain, New Zealand, and the United States—until it finds a fix to the problem.

Canadian Defense Minister Harjit Sajjan said he was satisfied that any data that had already been shared with the intelligence alliance before the software glitch was discovered "did not contain names or enough information on its own to identify individuals."

He also said he accepted an investigation's conclusion that the breach of Canadian privacy and national security laws was "unintentional."

It was unclear what, if any, impact the metadata sharing stoppage has had on Five Eyes intelligence gathering.

Public Safety Minister Ralph Goodale said Canada's allies have been "very supportive" while the CSE told AFP it continues to have "strong and collaborative relationships" with its allies in other areas.

In another report also released Thursday, Canada's spy agency watchdog raised concerns about efforts by the Canadian Security Intelligence Service (CSIS) to counter "insider threats."

The Security Intelligence Review Committee (SIRC) said it identified "a number of deficiencies" in the way CSIS prevents and investigates classified document leaks, following the high-profile leaks by Edward Snowden in the United States and the 2012 arrest of Canadian navy officer Jeffrey Paul Delisle for selling state secrets to Russia.

It highlighted "one situation in particular (in which) SIRC found that CSIS had failed to give a case the appropriate level of attention and to take follow-up action," but provided no details.

CSIS rejected its recommendations, it noted.

SIRC also raised a potential legal concern with respect to CSIS's use of paid Al-Qaeda or Taliban informants, saying it was in conflict with United Nations Al-Qaeda and Taliban Regulations that prohibit association with or funding of these two jihadist groups.

The release of both reports was delayed by October's legislative elections, and comes as the new Liberal government undertakes a complete review of Canada's framework.

Explore further: Canada spy agency website hacked

Related Stories

Spy agency tracked Canadians at an airport (Update)

January 31, 2014

A secret document leaked by U.S. whistleblower Edward Snowden shows Canada's electronic spy agency used information gleaned from a free internet service at a Canadian airport to track the wireless devices of thousands of ...

Recommended for you

Cryptocurrency rivals snap at Bitcoin's heels

January 14, 2018

Bitcoin may be the most famous cryptocurrency but, despite a dizzying rise, it's not the most lucrative one and far from alone in a universe that counts 1,400 rivals, and counting.

Top takeaways from Consumers Electronics Show

January 13, 2018

The 2018 Consumer Electronics Show, which concluded Friday in Las Vegas, drew some 4,000 exhibitors from dozens of countries and more than 170,000 attendees, showcased some of the latest from the technology world.

Finnish firm detects new Intel security flaw

January 12, 2018

A new security flaw has been found in Intel hardware which could enable hackers to access corporate laptops remotely, Finnish cybersecurity specialist F-Secure said on Friday.


Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.