Toronto’s Hospital for Sick Children dealing with cybersecurity incident

Toronto’s Hospital for Sick Children is still dealing with a cybersecurity incident so serious it declared a ‘Code Grey’ — meaning an IT system failure.

On Monday, the hospital said the incident appears to have only impacted a few internal clinical and corporate systems, as well as some hospital phone lines and webpages.

“All patient care is continuing while SickKids investigates and works to resolve the situation,” the hospital said in a statement.

“Upon learning of this incident, we immediately activated the hospital’s incident management command centre and launched an investigation to determine the nature and scope of the incident. At this time, the incident appears to have only impacted a few internal clinical and corporate systems, as well as some hospital phone lines and webpages. Downtime procedures have been activated where needed.”

It has notified the province and expert third parties to resolve the incident as soon as possible.

For now, the public may experience difficulties calling into the hospital, and accessing some webpages such as (SickKids’ health information site) and the hospital’s Careers application portal, the hospital said.

Because of the sensitive nature of their work, criminals have targeted hospitals for some time, believing they are susceptible to being extorted, either because they are privately-run and therefore have money, or because they are heavily subsidized by governments and therefore have access to money.

One of the biggest cyber attacks on a healthcare system in Canada took place in 2021 on the health network of Newfoundland and Labrador. In addition to disrupting hospital services, over 200,000 files were copied from a network drive in what is widely believed to have been a ransomware attack. A file can be opened each time a patient visits a hospital, so the number doesn’t necessarily represent 200,000 people.

In May, news services reported that Toronto’s Scarborough Health Network said it had suffered a cyber incident five months earlier. Patent data, including ID numbers, names, genders, birth dates, email addresses, home addresses, OHIP numbers, lab reports, procedure descriptions, insurance policy numbers, immunization statuses, diagnosis information, as well as staff names, physician names and numbers, may have been accessed.

Would you recommend this article?


Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.

Jim Love, Chief Content Officer, IT World Canada

Featured Download

Howard Solomon
Howard Solomon
Currently a freelance writer, I'm the former editor of and Computing Canada. An IT journalist since 1997, I've written for several of ITWC's sister publications including and Computer Dealer News. Before that I was a staff reporter at the Calgary Herald and the Brampton (Ont.) Daily Times. I can be reached at hsolomon [@]

Featured Articles

Empowering the hybrid workforce: how technology can build a better employee experience

Across the country, employees from organizations of all sizes expect flexibility...

What’s behind the best customer experience: How to make it real for your business

The best customer experience – the kind that builds businesses and...

Overcoming the obstacles to optimized operations

Network-driven optimization is a top priority for many Canadian business leaders...

Thriving amid Canada’s tech talent shortage

With today’s tight labour market, rising customer demands, fast-evolving cyber threats...

Staying protected and compliant in an evolving IT landscape

Canadian businesses have changed remarkably and quickly over the last few...

Related Tech News

Tech Jobs

Our experienced team of journalists and bloggers bring you engaging in-depth interviews, videos and content targeted to IT professionals and line-of-business executives.

Tech Companies Hiring Right Now