Suncor
Company Details
Linkedin ID:
suncor
Website:
Employees number:
14,579
Number of followers:
438,054
NAICS:
211
Industry Type:
Homepage:
suncor.com
IP Addresses:
0
Company ID:
SUN_7206037
Scan Status:
In-progress
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions
Suncor Vendor Cyber Rating & Cyber Score
suncor.comIn 1967, we pioneered commercial development of Canada's oil sands – one of the largest petroleum resource basins in the world. Since then, Suncor has grown to become a globally competitive integrated energy company with a balanced portfolio of high-quality assets, a strong balance sheet and significant growth prospects. Suncor’s operations include oil sands development and upgrading, conventional and offshore oil and gas production, petroleum refining, and product marketing under the Petro-Canada brand. Our use of innovative technology has made us an industry leader in the energy business – and with a strong strategy for growth, Suncor offers a solid foundation for you to continue building your career. As an employer, Suncor is one of the best companies in Canada, providing tremendous future potential where talented people thrive and lead. As our business evolves, so do our employment opportunities. Our work culture includes a dynamic mix of newcomers and experienced professionals, with a diversity of skills and expertise from all parts of Canada.
Suncor A.I CyberSecurity Scoring
Suncor Risk Score (AI oriented)Between 800 and 849
Suncor
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Suncor Global Score (TPRM)XXXX
Suncor
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Suncor Company CyberSecurity News & History
Past Incidents
2
Attack Types
1
Petro-Canada
Cyber Attack
Rankiteo Explanation
Attack limited on finance or reputation
Description: A cyberattack, according to the Canadian energy corporation Suncor, was to blame for the widespread disruptions that shut down services over the weekend. The business has alerted the necessary authorities and is taking action while collaborating with outside experts to investigate and fix the matter. Problems were reported in Calgary, Ottawa, Toronto, and several other significant Canadian cities. Petro-Canada finally turned to Twitter to recognize the problems and to state that they were being fixed.
Suncor
Cyber Attack
Rankiteo Explanation
Attack limited on finance or reputation
Description: A cyberattack, according to the Canadian energy corporation Suncor, was to blame for the widespread disruptions that shut down services over the weekend. The business has alerted the necessary authorities and is taking action while collaborating with outside experts to investigate and fix the matter. Problems were reported in Calgary, Ottawa, Toronto, and several other significant Canadian cities. Petro-Canada finally turned to Twitter to recognise the problems and to state that they were being fixed.
Suncor Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Suncor
Incidents vs Oil and Gas Industry Average (This Year)
No incidents recorded for Suncor in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Suncor in 2026.
Incident Types Suncor vs Oil and Gas Industry Avg (This Year)
No incidents recorded for Suncor in 2026.
Incident History — Suncor (X = Date, Y = Severity)
Suncor cyber incidents detection timeline including parent company and subsidiaries
Suncor Company Subsidiaries
In 1967, we pioneered commercial development of Canada's oil sands – one of the largest petroleum resource basins in the world. Since then, Suncor has grown to become a globally competitive integrated energy company with a balanced portfolio of high-quality assets, a strong balance sheet and significant growth prospects. Suncor’s operations include oil sands development and upgrading, conventional and offshore oil and gas production, petroleum refining, and product marketing under the Petro-Canada brand. Our use of innovative technology has made us an industry leader in the energy business – and with a strong strategy for growth, Suncor offers a solid foundation for you to continue building your career. As an employer, Suncor is one of the best companies in Canada, providing tremendous future potential where talented people thrive and lead. As our business evolves, so do our employment opportunities. Our work culture includes a dynamic mix of newcomers and experienced professionals, with a diversity of skills and expertise from all parts of Canada.
Loading...
Suncor Similar Companies
We are a global oil and gas company tasked with an important job—to safely find and deliver energy for the world. We’re experts in what we do—from the well site to the office. Across our operations and activities in 13 countries, we never forget our responsibility to be a great neighbor, and a gre
Oxy is an international energy company with assets primarily in the United States, the Middle East and North Africa. We are one of the largest oil producers in the U.S., including a leading producer in the Permian and DJ basins, and offshore Gulf of Mexico. Our midstream and marketing segment provid
We are one of the world's leading energy producers, and a primary catalyst for Abu Dhabi’s growth and diversification. We operate across the entire hydrocarbon value chain, through a network of fully-integrated businesses, with interests that range from exploration, production, storage, refining a
Valero
Valero is an international manufacturer and marketer of transportation fuels and petrochemical products. We are a Fortune 500 company based in San Antonio, Texas, fueled by nearly 10,000 employees and 15 petroleum refineries with a combined throughput capacity of approximately 3.2 million barrels pe
TechnipFMC
TechnipFMC is a leading technology provider to the traditional and new energies industry, delivering fully integrated projects, products, and services. With our proprietary technologies and comprehensive solutions, we are transforming our clients’ project economics, helping them unlock new possibi
Petróleos Mexicanos es la mayor empresa de México, el mayor contribuyente fiscal del país, así como una de las empresas más grandes de América Latina. Es de las pocas empresas petroleras del mundo que desarrolla toda la cadena productiva de la industria, desde la exploración, hasta la distribució
Amec Foster Wheeler
Wood Group has combined with Amec Foster Wheeler to form a new global leader in the delivery of project, engineering and technical services to energy and industrial markets. To find out more about Wood visit our new website at www.woodplc.com For all the latest updates and job news follow Wood on L
Aker Solutions delivers integrated solutions, products and services to the global energy industry. We enable low-carbon oil and gas production and develop renewable solutions to meet future energy needs. By combining innovative digital solutions and predictable project execution we accelerate the tr
aramco
We’re a leading producer of the energy and chemicals that drive global commerce and enhance the daily lives of people around the globe by continuing delivering an uninterrupted supply of energy to the world. Our resilience and agility has built one of the world’s largest integrated energy and chemi
.png)
Suncor CyberSecurity News
February 05, 2026 08:00 AM
What Ottawa can do to protect Canadians from cybercrime
Canada's telecoms can already block cyber threats. A simple regulatory fix could protect Canadians at scale — without new spending.
January 28, 2026 08:00 AM
'I know I didn't redeem those': Windsor man wonders about missing Petro-Points
Harvey Lemire of Windsor says $140 worth of his Petro-Points were redeemed at locations he doesn't recognize. He's advising people to check...
November 02, 2025 07:00 AM
Alberta and Ottawa launch $39M grant to boost worker skills and productivity
Alberta and Ottawa launch $39M grant to boost worker skills, productivity. EDMONTON — Alberta and the federal government are partnering on a...
August 15, 2025 07:00 AM
Hackers exploit Microsoft flaw to breach Canada ’s House of Commons
Hackers breached Canada 's House of Commons, exploiting a recent Microsoft flaw, compromising data, according to CBC News.
June 14, 2025 07:00 AM
WestJet faced with cybersecurity incident involving app and internal systems
Calgary-based WestJet says it's been hit by a cybersecurity breach affecting its internal systems and its app.
May 14, 2025 07:00 AM
Suncor introduces PC9000 hydraulic mining shovel in Fort Hills
Suncor's Fort Hills deposit has entered a new phase with the start-up of the world's largest hydraulic mining shovel PC9000.
May 11, 2025 09:01 AM
Suncor Energy suffers cybersecurity incident
Suncor Energy suffers cybersecurity incident. Calgary-based Canadian oil company Suncor Energy Inc. has confirmed it has been the victim of a cyberattack.
September 03, 2024 07:00 AM
Biggest Cybersecurity Attacks in Oil And Gas Extraction Industry (2023-2024)
The oil and gas extraction industry, a critical sector for global energy supply, has become a prime target for cyberattacks due to its...
July 21, 2024 01:12 PM
Canada's Oil and Gas Sector: Urgent Action Needed on Cybersecurity
The report emphasizes that cybercriminals motivated by financial gain pose the most significant threat to the oil and gas sector.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Suncor CyberSecurity History Information
Official Website of Suncor
The official website of Suncor is http://www.suncor.com.
Suncor’s AI-Generated Cybersecurity Score
According to Rankiteo, Suncor’s AI-generated cybersecurity score is 817, reflecting their Good security posture.
How many security badges does Suncor’ have ?
According to Rankiteo, Suncor currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has Suncor been affected by any supply chain cyber incidents ?
According to Rankiteo, Suncor has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does Suncor have SOC 2 Type 1 certification ?
According to Rankiteo, Suncor is not certified under SOC 2 Type 1.
Does Suncor have SOC 2 Type 2 certification ?
According to Rankiteo, Suncor does not hold a SOC 2 Type 2 certification.
Does Suncor comply with GDPR ?
According to Rankiteo, Suncor is not listed as GDPR compliant.
Does Suncor have PCI DSS certification ?
According to Rankiteo, Suncor does not currently maintain PCI DSS compliance.
Does Suncor comply with HIPAA ?
According to Rankiteo, Suncor is not compliant with HIPAA regulations.
Does Suncor have ISO 27001 certification ?
According to Rankiteo,Suncor is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Suncor
Suncor operates primarily in the Oil and Gas industry.
Number of Employees at Suncor
Suncor employs approximately 14,579 people worldwide.
Subsidiaries Owned by Suncor
Suncor presently has no subsidiaries across any sectors.
Suncor’s LinkedIn Followers
Suncor’s official LinkedIn profile has approximately 438,054 followers.
NAICS Classification of Suncor
Suncor is classified under the NAICS code 211, which corresponds to Oil and Gas Extraction.
Suncor’s Presence on Crunchbase
No, Suncor does not have a profile on Crunchbase.
Suncor’s Presence on LinkedIn
Yes, Suncor maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/suncor.
Cybersecurity Incidents Involving Suncor
As of April 04, 2026, Rankiteo reports that Suncor has experienced 2 cybersecurity incidents.
Number of Peer and Competitor Companies
Suncor has an estimated 10,824 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Suncor ?
Incident Types: The types of cybersecurity incidents that have occurred include Cyber Attack.
How does Suncor detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an third party assistance with outside experts, and and communication strategy with twitter acknowledgment, and third party assistance with collaborating with outside experts, and law enforcement notified with alerted the necessary authorities, and communication strategy with petro-canada acknowledged the issues on twitter..
Incident Details
Can you provide details on each incident ?
Title: Suncor Cyberattack Disruptions
Description: A cyberattack caused widespread disruptions that shut down services over the weekend.
Type: Cyberattack
Title: Suncor Cyberattack Disrupts Services in Major Canadian Cities
Description: A cyberattack caused widespread disruptions that shut down services over the weekend. The Canadian energy corporation Suncor has alerted the necessary authorities and is taking action while collaborating with outside experts to investigate and fix the matter. Problems were reported in Calgary, Ottawa, Toronto, and several other significant Canadian cities. Petro-Canada finally turned to Twitter to acknowledge the issues and to state that they were being fixed.
Type: Cyberattack
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Cyber Attack.
Impact of the Incidents
What was the impact of each incident ?
Incident : Cyberattack SUN23169723
Systems Affected: Services in CalgaryServices in OttawaServices in TorontoServices in other major Canadian cities
Incident : Cyberattack PET01310723
Downtime: Service disruptions over the weekend
Operational Impact: Shutdown of services
Which entities were affected by each incident ?
Incident : Cyberattack SUN23169723
Entity Name: Suncor
Entity Type: Energy Corporation
Industry: Energy
Location: Canada
Incident : Cyberattack PET01310723
Entity Name: Suncor
Entity Type: Energy Corporation
Industry: Energy
Location: CalgaryOttawaTorontoOther major Canadian cities
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Cyberattack SUN23169723
Incident Response Plan Activated: True
Third Party Assistance: Outside Experts.
Communication Strategy: Twitter acknowledgment
Incident : Cyberattack PET01310723
Third Party Assistance: Collaborating with outside experts
Law Enforcement Notified: Alerted the necessary authorities
Communication Strategy: Petro-Canada acknowledged the issues on Twitter
How does the company involve third-party assistance in incident response ?
Third-Party Assistance: The company involves third-party assistance in incident response through Outside experts, , Collaborating with outside experts.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Cyberattack SUN23169723
Investigation Status: Ongoing
Incident : Cyberattack PET01310723
Investigation Status: Ongoing
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Twitter Acknowledgment and Petro-Canada acknowledged the issues on Twitter.
Post-Incident Analysis
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Outside Experts, , Collaborating with outside experts.
Additional Questions
Impact of the Incidents
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was Services in CalgaryServices in OttawaServices in TorontoServices in other major Canadian cities.
Response to the Incidents
What third-party assistance was involved in the most recent incident ?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was outside experts, , Collaborating with outside experts.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing.
.png)
Latest Global CVEs (Not Company-Specific)
Description
nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.3.0, two peer-facing consensus request handlers assume that the history index is always available and call blockchain.history_store.history_index().unwrap() directly. That assumption is false by construction. HistoryStoreProxy::history_index() explicitly returns None for the valid HistoryStoreProxy::WithoutIndex state. when a full node is syncing or otherwise running without the history index, a remote peer can send RequestTransactionsProof or RequestTransactionReceiptsByAddress and trigger an Option::unwrap() panic on the request path. This issue has been patched in version 1.3.0.
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Description
PraisonAI is a multi-agent teams system. Prior to version 1.5.95, FileTools.download_file() in praisonaiagents validates the destination path but performs no validation on the url parameter, passing it directly to httpx.stream() with follow_redirects=True. An attacker who controls the URL can reach any host accessible from the server including cloud metadata services and internal network services. This issue has been patched in version 1.5.95.
Risk Information
cvss3
Base: 8.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
Description
PraisonAI is a multi-agent teams system. Prior to version 4.5.97, OAuthManager.validate_token() returns True for any token not found in its internal store, which is empty by default. Any HTTP request to the MCP server with an arbitrary Bearer token is treated as authenticated, granting full access to all registered tools and agent capabilities. This issue has been patched in version 4.5.97.
Risk Information
cvss3
Base: 9.1
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Description
PraisonAI is a multi-agent teams system. Prior to version 4.5.97, the PraisonAI Gateway server accepts WebSocket connections at /ws and serves agent topology at /info with no authentication. Any network client can connect, enumerate registered agents, and send arbitrary messages to agents and their tool sets. This issue has been patched in version 4.5.97.
Risk Information
cvss3
Base: 9.1
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Description
PraisonAI is a multi-agent teams system. Prior to version 4.5.90, MCPToolIndex.search_tools() compiles a caller-supplied string directly as a Python regular expression with no validation, sanitization, or timeout. A crafted regex causes catastrophic backtracking in the re engine, blocking the Python thread for hundreds of seconds and causing a complete service outage. This issue has been patched in version 4.5.90.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=suncor' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
