Joint guidance on managing cryptographic keys and secrets – Canadian Centre for Cyber Security Summary The Canadian Centre for Cyber Security, together with the Australian Signals Directorate’s ACSC and international partners (Australia DISR, JPCERT/CC, Japan NCO, New Zealand NCSC, and the UK NCSC), has released joint guidance on managing cryptographic keys and secrets. The guidance […]
Introduction to cloud computing (ITSAP.50.110) – Canadian Centre for Cyber Security Summary This guidance from the Canadian Centre for Cyber Security gives an accessible introduction to cloud computing and why organisations are moving services to cloud service providers (CSPs). It defines cloud computing as the on-demand delivery of IT resources over the internet, explains how […]
Security considerations for critical infrastructure (ITSAP.10.100) – Canadian Centre for Cyber Security Summary Published July 2025 as part of the Cyber Centre’s Awareness series, this guidance outlines key risks to Canada’s critical infrastructure (CI) and practical security measures CI operators should adopt. It describes CI sectors, explains how cyber attacks can cause service disruption, and […]
Security considerations when developing and managing your website (ITSAP.60.005) – Canadian Centre for Cyber Security Summary The Canadian Centre for Cyber Security’s ITSAP.60.005 (July 2025) summarises common threats to websites and provides practical security and privacy measures to develop and manage web services securely. It covers injection attacks (SQL injection, XSS), cross-site request forgery (CSRF), […]
Quick guide to email configuration (ITSAP.60.003) – Canadian Centre for Cyber Security Summary This guidance from the Canadian Centre for Cyber Security outlines the core email configuration controls you should have in place to reduce spoofing, phishing and interception risks. It explains Sender Policy Framework (SPF), DomainKeys Identified Mail (DKIM), Transport Layer Security (TLS) and […]
Steps to address data spillage in the cloud (ITSAP.50.112) – Canadian Centre for Cyber Security Summary This Cyber Centre guidance (ITSAP.50.112) explains what data spillage is and sets out a four-step playbook for identifying, containing, alerting and remediating spills in cloud environments. It emphasises rapid detection, using platform tools and CSP support for containment, clear […]
Joint guidance on foundations for operational technology cyber security and asset inventory guidance for owners and operators – Canadian Centre for Cyber Security Summary The Canadian Centre for Cyber Security has joined the United States’ CISA and a group of international partners to publish joint guidance on foundations for operational technology (OT) cyber security and […]
Models of cloud computing (ITSAP.50.111) – Canadian Centre for Cyber Security Summary This guidance explains the primary service and deployment models used in cloud computing to help organisations choose the most appropriate approach for their needs. It outlines the three core service models — Software as a Service (SaaS), Platform as a Service (PaaS) and […]
UPS rolls out peak season rates for air and ground shipments Summary UPS has announced its 2025 peak demand surcharges covering the busy holiday shipping window. The surcharges run from 28 September 2025 through 17 January 2026, with fees ranging from $0.40 up to $8.75 per package depending on service level and shipment volume. The […]
Tariff uncertainty deepens as appeals court rejects IEEPA duties Summary The U.S. Court of Appeals for the Federal Circuit, in a 7-4 decision, found that the majority of the White House’s tariffs imposed under the International Emergency Economic Powers Act (IEEPA) are unlawful. Enforcement of the tariffs will remain paused until 14 October to allow […]
