IT systems of ENGlobal under attack by ransomware, causing disruptions
In a concerning development for the energy sector, Houston-based energy sector vendor ENGlobal is currently dealing with a cyberattack on its IT systems. The attack, revealed by ENGlobal's Chief Financial Officer (CFO) Darren Spriggs, occurred on November 25, 2020.
The nature of the attack and the extent of the data encrypted remain unknown. However, it is known that the attack has encrypted some of ENGlobal's data files. Access to the company's IT system has been restricted to contain and remediate the attack, with the timing of restoration and full access to the system remaining uncertain.
ENGlobal's securities filing also stated that the potential impact on the company's financial condition or results of operations is currently unknown. The company did not immediately respond to a request for comment regarding the cyberattack.
This incident marks at least the third disruptive cybersecurity incident in the energy sector since August 2020. Halliburton, one of the world's largest providers of oil services, was also affected by a cyberattack in August 2020. Newpark Resources was hit by a ransomware attack in October 2020.
As of early July 2025, there are no public or reported updates available on the cyberattack targeting ENGlobal or its impact on the energy sector. Recent cybersecurity reports focus on various issues and incidents in 2025, such as vulnerabilities in Microsoft products, ransomware attacks on financial firms, and breaches involving other companies, but none mention ENGlobal or a related energy sector incident.
ENGlobal's IT system access is currently limited to essential business operations. The company has not yet determined whether the cybersecurity incident will materially impact its financial condition or results of operations.
This incident serves as a reminder of the growing threat of cyberattacks in the energy sector. As the industry continues to digitalise, it becomes increasingly vulnerable to such attacks. It is crucial for companies in the sector to prioritise cybersecurity measures to protect their systems and data.
[1] [2] [4] - Sources for further reading on recent cybersecurity issues and incidents in 2025.
- The cybersecurity industry is urgently called to action as the energy sector faces a growing threat from ongoing cyberattacks, with ENGlobal's recent incident being one of at least three disruptive attacks since August 2020.
- Despite the limitations on ENGlobal's IT system access and the unknown impact on its financial condition, concerns over potential ransomware attacks on critical infrastructure persist, given the encrypted data files and the industry's increasing digitization.
- The cybersecurity landscape in 2025 continues to be dominated by various incidents, including vulnerabilities in technology products, ransomware attacks on financial firms, and breaches affecting other companies, but the ongoing ENGlobal incident has not been publicly reported or updated.
