US energy contractor ENGlobal reported that access to its IT systems is limited following a ransomware infection in late November, affecting high-profile customers including the Pentagon and major oil and gas producers. The company revealed it became aware of the incident on November 25 after hackers locked up some files.
ENGlobal filed a report with the US Securities and Exchange Commission stating that while investigation efforts continue, IT access is restricted to essential business operations only. However, details about the extent of the data stolen remain unclear.
The company provides critical infrastructure services, making it an attractive target for extortionists who demand ransoms to protect customer data and ensure uninterrupted operations. ENGlobal’s internal investigation and engagement with external cybersecurity specialists have contained the incident, but no timeline has been set for restoring full IT access.
This latest cyberattack follows increasing ransomware attacks on US and UK critical organizations, including a recent threat from online gangs against Liverpool’s Alder Hey Children’s Hospital.
Source: https://www.theregister.com/2024/12/03/us_energy_contractor_englobal_ransomware