In January 2018, Canadian transit agency Metrolinx confirmed a cyberattack traced to a North Korean source. The intrusion breached a firewall but affected a system not tied to customer data, employee data, or safety systems; Metrolinx said it detected and responded quickly and believed the activity was routed through Russia.