An unauthorised third-party has gained access to some systems at Halliburton, according to a US Securities Exchange Commission filing.
“When the company learned of the issue, the company activated its cybersecurity response plan and launched an investigation internally with the support of external advisors to assess and remediate the unauthorised activity,” the filing reads. “The company’s response efforts included proactively taking certain systems offline to help protect them and notifying law enforcement. The company’s ongoing investigation and response include restoration of its systems and assessment of materiality.”
Among other things, Halliburton provides services to oil and gas companies, including well construction, drilling, hydraulic fracturing, and IT software and services. During the cyberattack, customers were unable to generate invoices or purchase orders. While not confirmed, some investigators are pointing to the RansomHub ransomware gang as responsible for the attack.
“The company’s ongoing investigation and response include restoration of its systems and assessment of materiality,” a Halliburton statement reads. “The company is communicating with its customers and other stakeholders. The company is following its process-based safety standards for ongoing operations under the Halliburton Management System, and is working to identify any effects of the incident.”
