Ontario jail forced to take servers offline after suffering ‘breach’ of security systems

The Central East Correctional Centre in Lindsay, Ontario, has significantly scaled back its operations after a cyber breach compromised its security systems earlier this month. Staff discovered the breach on June 1, forcing the facility to take affected servers offline as part of its "continuity of operations plan."

“

The affected servers have been taken offline while work is underway to address the breach.

While the Ministry of the Solicitor General assures that critical functions such as inmate court appearances, showering, and healthcare are still being provided, other day-to-day operations have been curtailed. The exact components of the security systems affected by the outage and the precise impact on the jail's functioning over the past two weeks remain undisclosed.

The Ontario Provincial Police have been engaged to investigate the incident. The ministry stated that inmate data was not among the information on the compromised servers. However, details regarding whether the attack involved ransomware or another type of cyber threat, and how long the scaled-back operations will persist, are currently unknown.

“

The discovery that a provincial correctional facility has had its security system compromised and been forced to resort to a contingency operations plan is deeply alarming.

Ontario Liberal MPP Adil Shamji expressed alarm over the breach, urging the government to release more information. He raised concerns that the incident might be more than a simple data breach, potentially targeting prison security systems like surveillance and access control. Shamji also pointed to a previous undisclosed cyber-attack on a vendor for Ontario Health atHome, highlighting growing cybersecurity threats to public institutions.

“

If this includes surveillance systems and access control equipment like gates or locks, the public deserves to know immediately.