InfoSecBulletin Cybersecurity for mankind
Petro-Canada gas stations, following a cyberattack on parent company Suncor:
Suncor is a Canada-based energy company that owns a network of more than 1,800 Petro-Canada retail and wholesale locations. On June 25, Suncor said it had experienced a cybersecurity incident that may impact some transactions with suppliers and customers.
Samsung phone is saving your passwords in plain text
UK Software Firm Exposed 8 million of Healthcare Worker Records
GitHub Enterprise Server Vulns Expose Risk of Code Execution
CVE-2025-2492
ASUS warns of critical auth bypass flaw in routers
16,000+ Fortinet devices compromised with symlink backdoor, Mostly in Asia
Patch now! Critical Erlang/OTP SSH Vuln Allows UCE
CISA warns of increasing risk tied to Oracle legacy Cloud leak
CVE-2025-20236
Cisco Patches Unauthenticated RCE Flaw in Webex App
Apple released emergency security updates for 2 zero-day vulns
Oracle Released Patched for 378 flaws for April 2025
The company said it has brought in third-party experts to aid investigation and response efforts, and noted that authorities have been notified. Suncor said it is not aware of any evidence that customer, supplier or employee data has been compromised or misused as a result of the cyberattack.
As a result of the cyberattack, some services at Petro-Canada gas stations have been disrupted. Customers have been unable to use credit cards at the pumps or log into their Petro-Canada accounts. Suncor said it is working to restore service as quickly as possible.
“At this time, we are not aware of any evidence that customer, supplier or employee data has been compromised or misused as a result of this situation,” the company said.
ALSO READ:
Siemens Energy, a prominent European energy giant:
The ransomware gang Cl0p has claimed responsibility for a cyberattack on Siemens Energy, a prominent European energy giant. The attack is the latest in a series of high-profile ransomware attacks targeting energy companies.
In addition to Siemens Energy, Cl0p has also claimed responsibility for attacks on Schneider Electric, the University of California Los Angeles, and other organizations. The group is known for its sophisticated attacks and its willingness to target critical infrastructure.
Siemens Energy has not yet confirmed the cyberattack, The responses “Siemens Energy spokesperson, Claudia Nehring, stated, “Regarding the global data security incident, Siemens Energy is among the targets. Based on the current analysis, no critical data has been compromised and our operations have not been affected. We took immediate action when we learned about the incident.”
The company has over 91,000 employees in more than 90 countries and is considered one of the world’s largest energy technology companies.
The attack on Siemens Energy is a reminder of the growing threat of ransomware attacks. Ransomware is a type of malware that encrypts a victim’s files and demands a ransom payment in exchange for the decryption key. These attacks can be devastating for businesses, as they can disrupt operations and lead to the loss of sensitive data.
