Petro-Canada issues may be 'tip of the iceberg' after Suncor cybersecurity incident
Suncor Energy Inc. falling victim to a cyberattack may be the most significant cybersecurity breach of an oil and gas company thus far in Canadian history, experts say.
The Calgary-based oil company has provided no details about the attack or which parts of its operations were affected, saying simply in a news release issued late Sunday that it had “experienced a cybersecurity incident.”
The confirmation followed days of public speculation, after social media users complained on Twitter over the weekend about an inability to use credit or debit cards at the company's chain of Petro-Canada gas stations in multiple major Canadian cities, as well as difficulties accessing car wash services.
On Saturday, Petro-Canada's official Twitter account also issued a tweet saying that the company's Petro-Points app and website were temporarily unavailable.
As of mid-day Monday, some of Suncor's Petro-Canada sites remained cash-only, and its app and Petro-Points login were unavailable. Car washes were also unavailable at some locations, the company said via social media.
Ian L. Paterson, CEO of Vancouver-based cybersecurity company Plurilock Security Inc., said these public-facing issues could be “just the tip of the iceberg.” He added that as early as Friday, he was also hearing about Suncor employees being unable to log in to their own internal accounts.
“All of these things put together seem to suggest that there could be a sizable cyber incident that's taking place,” Paterson said, cautioning that much is still unknown about the current situation.
“I think that this actually could be the Canadian Colonial Pipeline, just in the sense that Suncor is such a large part of the economy.”
In 2021, a ransomware attack successfully targeted the Colonial Pipeline, the largest pipeline system for refined oil products in the U.S.
It was the largest cyberattack on oil infrastructure in the history of the United States, and forced the company to temporarily halt pipeline operations.
Although the pipeline was only shut down for a few days, the disruption in the U.S. fuel supply caused the rerouting of flights, panic buying and short-term price spikes.
In Canada, there hasn't been a publicized, large-scale, successful cyberattack on a domestic oil and gas company, though in April an apparent release of Pentagon documents onto social media sites contained a claim by Russian-backed hackers that they had successfully accessed Canada's natural gas infrastructure.
The leaked documents did not name a specific company, and the legitimacy of that claim remains unclear.
However, cybersecurity experts have been warning for years that this country's energy industry is an attractive target for cybercriminals.
Earlier this year, the Canadian Centre for Cyber Security (CCCS) - part of the federal Communications Security Establishment, which provides the government of Canada with information technology security and foreign signals intelligence - warned that the oil and gas sector attracts “more than its share” of attention from cybercriminals.
The CCCS said that is because of the high value of the industry's assets and “the degree of customer dependence on the industry's products,” adding that cybercriminals motivated by financial gain are the top cyber threats facing the Canadian oil and gas sector.
“We assess that ransomware is almost certainly the main threat to the supply of oil and gas to customers,” the agency wrote in a report.
“Since oil and gas organizations are part of Canadian critical infrastructure, they are attractive targets for extortion because of the importance of these products and services to Canadians.”
The CCCS also warned that while politically motivated attacks are less likely, state-sponsored or state-aligned cybercriminals - including those with ties to Russia, China and Iran - have targeted the global energy sector in the past for both espionage purposes as well as with an intent to create mayhem.
“The cybersecurity industry as a whole, and certainly governments both at the federal level and others, have been sounding the alarm for many years that critical infrastructure in particular is vulnerable,” Paterson said.
“This has the potential to be very, very serious for Suncor, and it's not really a surprise.”
There is no indication that any of Suncor's critical infrastructure, such as oilsands facilities or refineries, have been affected by the incident.
The company said there is also no evidence that any customer, supplier or employee data has been compromised or misused.
Paterson said in the best-case scenario, Suncor will have caught the breach quickly. But he said it's also possible that it could take the company a very long time to resolve the issue.
“The problem here is that it's such a large operation with multiple subsidiaries with such an expansive set of services,” he said.
“If the threat actor has been present and persistent for a long time, it could take a very long time to root them out.”
This report by The Canadian Press was first published June 26, 2023.
CTVNews.ca Top Stories
Police arrest Toronto woman in connection with three recent homicides
Police have arrested a Toronto woman in connection with three recent homicides and investigators say that they believe two of the victims may have been 'randomly targeted.'
NDP house leader laments 'agents of chaos' in precarious Parliament
NDP House leader Peter Julian says there's more his party wants to do in Parliament before the next election, but if the current dysfunction continues it will become a factor in how they vote on a confidence measure.
Former Colorado county clerk Tina Peters sentenced to 9 years for voting data scheme
A judge ripped into a Colorado county clerk for her crimes and lies before sentencing her Thursday to nine years behind bars for a data-breach scheme spawned from the rampant false claims about voting machine fraud in the 2020 presidential race.
Youth pleads guilty to manslaughter in death of P.E.I. teen Tyson MacDonald
A teen charged with the murder of another teen on Prince Edward Island last year has pleaded guilty to a lesser charge of manslaughter.
Jury begins deliberations in Jacob Hoggard's sexual assault trial
The jury tasked with determining if Canadian musician Jacob Hoggard sexually assaulted a young woman in northeastern Ontario eight years ago began deliberating Friday after nearly two weeks of testimony that saw the singer and his accuser give starkly different accounts of what happened.
Here's what the jury didn't hear in Jacob Hoggard's sexual assault trial
A northeastern Ontario jury has started deliberating in Canadian musician Jacob Hoggard's sexual assault trial, we can now tell you what they weren't allowed to hear.
2 dead after fire rips through historic building in Old Montreal
At least two people are dead and others are injured after a fire ripped through a century-old building in Old Montreal early Friday morning, sources told Noovo Info.
Canadian family stuck in Lebanon anxiously awaits flight options amid Israeli strikes
A Canadian man who is trapped in Lebanon with his family says they are anxiously waiting for seats on a flight out of the country, as a barrage of Israeli airstrikes continues.
Yazidi woman captured by ISIS rescued in Gaza after more than a decade in captivity
A 21-year-old Yazidi woman has been rescued from Gaza where she had been held captive by Hamas for years after being trafficked by ISIS.