Houston-based ENGlobal Company, a contractor specializing in engineering and automation companies for the power sector and US authorities, introduced Monday {that a} ransomware assault has disrupted its operations.
The corporate disclosed the incident on Monday in a regulatory submitting with the US Securities and Alternate Fee (SEC).
The breach was recognized on November 25 2024, prompting ENGlobal to take parts of its IT programs offline to mitigate the influence.
“The preliminary investigation has revealed {that a} menace actor illegally accessed the Firm’s info expertise (“IT”) system and encrypted a few of its knowledge information,” reads the SEC submitting.
ENGlobal has since initiated containment and remediation efforts, together with participating exterior cybersecurity consultants and launching an inner investigation.
On the time of writing, the corporate is working with restricted entry to its IT programs, specializing in important enterprise features. “The timing of restoration of full entry to the Firm’s IT system stays unclear as of the date of this submitting,” ENGlobal said. It has additionally but to find out whether or not the incident will considerably have an effect on its monetary efficiency or operations.
ENGlobal has not disclosed particulars in regards to the ransomware used or whether or not delicate knowledge was stolen. No recognized ransomware teams have claimed accountability for the assault thus far.
The corporate gives automation and management programs primarily for power sector purchasers and US authorities companies, together with the Division of Protection and the Division of Power. Its programs are utilized in vegetation, municipalities and business buildings.
Learn extra on ransomware dangers within the power sector: US Power Sector Susceptible to Provide Chain Assaults
The assault underscores ongoing cybersecurity threats going through vital infrastructure contractors. ENGlobal assured stakeholders that it’s working diligently to resolve the difficulty, however didn’t estimate when its programs can be absolutely restored.
To guard in opposition to ransomware, safety consultants advocate recurrently updating software program, utilizing sturdy knowledge encryption and making certain safe offline backups. Worker coaching and testing restoration procedures additionally play an important position in minimizing the influence of such assaults.
