A Houston-based engineering and automation services provider, ENGlobal Corporation, fell victim to a ransomware attack disrupted operations on November 25, 2024, forcing the company to limit access to its IT systems.
The cyberattack, which encrypted several data files within ENGlobal's network, prompted immediate response measures from the company. ENGlobal, which counts the U.S. Department of Defense and Department of Energy among its clients, quickly moved to contain the breach by restricting access to its IT infrastructure.
As part of its incident response, the company brought in external cybersecurity experts to investigate the unauthorized system access. The full scope of the attack remains under investigation, with no ransomware group currently taking credit for the incident.
The duration of the service disruption is still unknown, and ENGlobal has not yet evaluated the complete financial impact of the cyber incident. The company has also not confirmed whether the attackers managed to steal any sensitive data during the breach.
This incident adds to the growing list of cyberattacks targeting U.S. infrastructure and service providers in recent years. The attack raises concerns about cybersecurity readiness among companies handling sensitive government contracts.
ENGlobal continues to work with security specialists to restore full system functionality while maintaining essential business operations during the recovery process.