On November 25, 2024, ENGlobal Corporation, an engineering and automation services provider headquartered in Houston, Texas, detected unauthorized access to its information technology systems, resulting in the encryption of certain data files—a hallmark of ransomware attacks. The company, serving clients including the U.S. Department of Defense and Department of Energy, promptly initiated containment measures, restricted IT system access to essential business operations, and engaged external cybersecurity specialists to assist in the investigation.
The timeline for full restoration of IT system access remains uncertain, and ENGlobal has not yet determined the potential material impact on its financial results. The company has not disclosed whether any data was exfiltrated or identified the specific ransomware variant involved. As of now, no ransomware group has publicly claimed responsibility for the attack.
