check 2012: SAUDI ARAMCO: The Shamoon malware, also known as Disttrack, targeted Saudi Aramco, the world's largest oil company. The attack erased data on approximately 35,000 computers, replacing it with an image of a burning American flag.
check 2012: RasGas, a major natural gas company in Qatar, experienced a cyber-attack around the same time as the Saudi Aramco Shamoon attack. The attack also used the Shamoon malware.
check 2018: Petro Rabigh: The Triton malware, also known as Trisis, targeted the safety instrumented systems (SIS) of Petro Rabigh, a petrochemical plant in Saudi Arabia. This sophisticated attack aimed to disable safety systems, potentially causing physical damage or safety incidents.
check 2019: Marathon Petroleum, a major U.S. oil refining company, suffered a cyber-attack that disrupted operations. The specifics of the attack were not widely disclosed, but it underscored the industry's vulnerability.
check 2019: Petróleos Mexicanos (Pemex), the Mexican state-owned petroleum company, was hit by a ransomware attack that disrupted administrative operations. The DoppelPaymer ransomware was used in the attack.
check 2021: Colonial Pipeline: While primarily affecting the pipeline operations, the Colonial Pipeline ransomware attack also impacted the petrochemical supply chain. The DarkSide ransomware group attacked the pipeline, leading to a shutdown of the pipeline supplying gasoline and other fuels to the U.S. East Coast.
check 2023: Norsk Hydro, an industrial company with significant operations in the petrochemical sector, faced a ransomware attack in 2023. The attack affected their global operations, leading to widespread disruptions.