InfoSecBulletin Cybersecurity for mankind
Petro-Canada gas stations, following a cyberattack on parent company Suncor:
Suncor is a Canada-based energy company that owns a network of more than 1,800 Petro-Canada retail and wholesale locations. On June 25, Suncor said it had experienced a cybersecurity incident that may impact some transactions with suppliers and customers.
Microsoft Patches Four Critical Azure and Power Apps Vulns
Qilin Ransomware topped April 2025 with 45+ data leak disclosures
SonicWall Patches 3 Flaws in SMA 100 Devices
Top Ransomware Actively Attacking Financial Sector: 406 Incidents Disclosed
Critical (CVSS 10) Flaw in Cisco IOS XE WLCs Allows RRA
CVE-2025-29824
Play Ransomware Exploited Windows CVE-2025-29824 as Zero-Day
Hacker exploited Samsung MagicINFO 9 Server RCE flaw
CISA adds Langflow flaw to its KEV catalog
Google Fixes Android Flaw (CVE-2025-27363) Exploited by Attackers
UAP hosted “UAP Cyber Siege 2025”, A national level cybersecurity competition
The company said it has brought in third-party experts to aid investigation and response efforts, and noted that authorities have been notified. Suncor said it is not aware of any evidence that customer, supplier or employee data has been compromised or misused as a result of the cyberattack.
As a result of the cyberattack, some services at Petro-Canada gas stations have been disrupted. Customers have been unable to use credit cards at the pumps or log into their Petro-Canada accounts. Suncor said it is working to restore service as quickly as possible.
“At this time, we are not aware of any evidence that customer, supplier or employee data has been compromised or misused as a result of this situation,” the company said.
ALSO READ:
Siemens Energy, a prominent European energy giant:
The ransomware gang Cl0p has claimed responsibility for a cyberattack on Siemens Energy, a prominent European energy giant. The attack is the latest in a series of high-profile ransomware attacks targeting energy companies.
In addition to Siemens Energy, Cl0p has also claimed responsibility for attacks on Schneider Electric, the University of California Los Angeles, and other organizations. The group is known for its sophisticated attacks and its willingness to target critical infrastructure.
Siemens Energy has not yet confirmed the cyberattack, The responses “Siemens Energy spokesperson, Claudia Nehring, stated, “Regarding the global data security incident, Siemens Energy is among the targets. Based on the current analysis, no critical data has been compromised and our operations have not been affected. We took immediate action when we learned about the incident.”
The company has over 91,000 employees in more than 90 countries and is considered one of the world’s largest energy technology companies.
The attack on Siemens Energy is a reminder of the growing threat of ransomware attacks. Ransomware is a type of malware that encrypts a victim’s files and demands a ransom payment in exchange for the decryption key. These attacks can be devastating for businesses, as they can disrupt operations and lead to the loss of sensitive data.
