December 3, 2024 at 06:35AM
ENGlobal Corporation has reported that its operations were impacted by a ransomware attack discovered on November 25. The company is investigating the incident while restricting IT system access, allowing only essential operations. Recovery efforts are ongoing, but they have not determined the financial impact or confirmed any data theft.
### Meeting Takeaways – ENGlobal Corporation Ransomware Incident
1. **Incident Discovery**: ENGlobal Corporation detected a ransomware attack on November 25.
2. **Containment Actions**: The company responded by taking certain systems offline to contain the incident, which included:
– Initiating an internal investigation.
– Engaging external cybersecurity specialists.
– Restricting access to IT systems.
3. **Impact on Operations**: Currently, only essential business operations have access to IT systems while the investigation and recovery efforts are ongoing.
4. **Investigation Status**:
– The preliminary investigation indicates that unauthorized access led to the encryption of some data files.
– It’s unclear if any data was stolen, and details on the ransomware used have not been disclosed.
5. **Financial Impact**: ENGlobal has not yet determined if the incident will materially affect its financial condition or results of operations.
6. **Current Status**: Recovery efforts are in progress, but a timeline for full access to IT systems has not been provided.
7. **Company Profile**: ENGlobal Corporation, headquartered in Houston, Texas, provides engineering and professional services primarily for energy sector organizations and US government agencies.
### Next Steps:
– Monitor updates on the recovery progress from ENGlobal.
– Review policies and procedures related to cybersecurity in light of this incident.