Cyber Incident Victim: Parkland Corporation
Date:
Nov 2020
Location:
Canada
Summary
Parkland Corporation experienced a ransomware incident resulting in encrypted critical documents and demands for their release. The Calgary-based energy firm collaborated with cybersecurity experts to mitigate the attack, recover affected data, and enhance preventive security measures, addressing vulnerabilities in their IT infrastructure and recovery protocols.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
On November 14, 2020, Calgary-based energy firm Parkland Corporation experienced a ransomware attack that resulted in the encryption of critical corporate documents. Attackers demanded payment for the release of the encrypted data, disrupting normal business operations. The incident exposed vulnerabilities within the company’s IT security infrastructure, particularly in its data protection and access controls. Parkland engaged external cybersecurity experts to assist with incident response, focusing on containment and recovery efforts. The attackers subsequently released portions of the encrypted documents, though the specific content and extent of this release were not disclosed publicly. The attack underscored operational risks associated with inadequate recovery procedures and incident response planning.
Parkland Corporation prioritized data recovery and system restoration while collaborating with forensic investigators to analyze the breach’s origin. The company implemented enhanced security measures to prevent future incidents, though specific technical controls were not detailed in public reports. Business impacts included temporary operational disruptions and reputational damage stemming from the unauthorized document release. No customer data compromise or financial loss figures were confirmed. The incident highlighted broader corporate cybersecurity challenges within the energy sector, particularly regarding ransomware preparedness. Recovery efforts concluded with restored systems and revised security protocols.