Canadian Authorities Warn: Hacktivists Target Exposed ICS Devices, Risking Critical Infrastructure

Canadian authorities have issued a stark warning following multiple incidents where hacktivists exploited exposed industrial control systems (ICS) across essential sectors including water utilities, oil and gas, and agriculture. The alert, released by the Canadian Centre for Cyber Security on October 29, 2025, details how attackers tampered with water pressure valves, manipulated automated tank gauges, and altered environmental controls in grain silos—raising serious concerns about the safety and reliability of Canada’s critical infrastructure .

Canadian cyber officials, alongside the Royal Canadian Mounted Police, investigated these cases and found that hackers capitalized on systems left accessible from the public internet. For example, one water facility experienced degraded service after its pressure values were changed, while a Canadian oil and gas company saw false alarms triggered through its tank gauges. In agriculture, improperly set temperature and humidity in a grain silo could have led to unsafe conditions if left unresolved .

Why ICS Security Matters Now ?

Industrial control systems (ICS) are the digital backbone of vital infrastructure, controlling everything from water treatment pumps to oil storage tanks. Devices such as Programmable Logic Controllers (PLCs), Remote Terminal Units (RTUs), and Human-Machine Interfaces (HMIs) are designed for remote management and automation, but when exposed to the internet without proper safeguards, they become prime targets for cyber attackers. 

The recent hacktivist attacks were not highly sophisticated but relied on easily accessible vulnerabilities. According to the Canadian Centre for Cyber Security, organizations often become victims of opportunity—hackers seek out exposed systems to gain media attention, undermine trust, or discredit operators.

Public Reaction on Hackers exploiting Canadian ICS and Expert Calls for Action

The announcement sparked immediate scrutiny within Canada’s cybersecurity community. Local experts and professionals on social media platforms have urged operators to tighten access controls, implement virtual private networks (VPNs) with two-factor authentication, and regularly audit connected devices. There is a consensus that urgent action is needed to shield public safety and avoid future disruptions.

Best Practices for ICS Security

• Restrict internet exposure of ICS devices wherever possible.
• Apply strong authentication, such as two-factor authentication, for remote access.
• Use VPNs and encrypted connections for management interfaces.
• Regularly update and patch ICS software and hardware.
• Conduct frequent security audits and vulnerability assessments.

The National Cyber Threat Assessment 2025-2026 emphasizes the growing risks posed by hacktivist groups and urges all organizations involved in critical infrastructure to adopt robust cybersecurity protocols.

For ongoing analysis and expert discussion, join our WhatsApp group WireUnwired Research or connect with our LinkedIn community WireUnwired Research to stay updated on the latest ICS security developments.