Toronto’s Hospital for Sick Children dealing with cybersecurity incident

Toronto’s Hospital for Sick Children is still dealing with a cybersecurity incident so serious it declared a ‘Code Grey’ — meaning an IT system failure.

On Monday, the hospital said the incident appears to have only impacted a few internal clinical and corporate systems, as well as some hospital phone lines and webpages.

“All patient care is continuing while SickKids investigates and works to resolve the situation,” the hospital said in a statement.

“Upon learning of this incident, we immediately activated the hospital’s incident management command centre and launched an investigation to determine the nature and scope of the incident. At this time, the incident appears to have only impacted a few internal clinical and corporate systems, as well as some hospital phone lines and webpages. Downtime procedures have been activated where needed.”

It has notified the province and expert third parties to resolve the incident as soon as possible.

For now, the public may experience difficulties calling into the hospital, and accessing some webpages such as (SickKids’ health information site) and the hospital’s Careers application portal, the hospital said.

Because of the sensitive nature of their work, criminals have targeted hospitals for some time, believing they are susceptible to being extorted, either because they are privately-run and therefore have money, or because they are heavily subsidized by governments and therefore have access to money.

One of the biggest cyber attacks on a healthcare system in Canada took place in 2021 on the health network of Newfoundland and Labrador. In addition to disrupting hospital services, over 200,000 files were copied from a network drive in what is widely believed to have been a ransomware attack. A file can be opened each time a patient visits a hospital, so the number doesn’t necessarily represent 200,000 people.

In May, news services reported that Toronto’s Scarborough Health Network said it had suffered a cyber incident five months earlier. Patent data, including ID numbers, names, genders, birth dates, email addresses, home addresses, OHIP numbers, lab reports, procedure descriptions, insurance policy numbers, immunization statuses, diagnosis information, as well as staff names, physician names and numbers, may have been accessed.

Would you recommend this article?


Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.

Jim Love, Chief Content Officer, IT World Canada

Featured Download

Howard Solomon
Howard Solomon
Currently a freelance writer, I'm the former editor of and Computing Canada. An IT journalist since 1997, I've written for several of ITWC's sister publications including and Computer Dealer News. Before that I was a staff reporter at the Calgary Herald and the Brampton (Ont.) Daily Times. I can be reached at hsolomon [@]

Related Tech News

Featured Tech Jobs


CDN in your inbox

CDN delivers a critical analysis of the competitive landscape detailing both the challenges and opportunities facing solution providers. CDN's email newsletter details the most important news and commentary from the channel.