Security Affairs
FBI: TeamPCP Compromised Dev Tools to Steal Cloud Credentials|Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|FBI: TeamPCP Compromised Dev Tools to Steal Cloud Credentials|Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

U.S. oil giant Halliburton disclosed a data breach

U.S. oil company Halliburton disclosed a data breach following the RansomHub ransomware gang attack that occurred in August. In August, Halliburton, a major U.S. oil company, announced that a cyberattack hit its IT infrastructure, particularly impacting operations at its Houston offices. Halliburton Company is an American multinational corporation and the world’s second largest oil service company which is […]

Halliburton

U.S. oil company Halliburton disclosed a data breach following the RansomHub ransomware gang attack that occurred in August.

In August, Halliburton, a major U.S. oil company, announced that a cyberattack hit its IT infrastructure, particularly impacting operations at its Houston offices.

Halliburton Company is an American multinational corporation and the world’s second largest oil service company which is responsible for most of the world’s largest fracking operations. It employs approximately 55,000 people through its hundreds of subsidiaries, affiliates, branches, brands, and divisions in more than 70 countries.

“U.S. oilfield services firm Halliburton on Wednesday was hit by a cyberattack, according to a person familiar with the matter.” reported Reuters. “Halliburton said it was aware of an issue affecting certain systems at the company and was working to determine the cause and impact of the problem.”

The company announced it is working with “leading external experts” to investigate the attack and fix the issue, however, it did not provide technical details about the attack.

A person familiar with the matter told Reuters that the company has asked some staff not to connect to internal networks.

According to Reuters, the cyberattack impacted the company’s north Houston campus, as well as some global connectivity networks.

This week, the company confirmed that threat actors had stolen data during the attack, according to the 8-K Form filed with Securities and Exchange Commission (SEC).

Bleepingcomputer first reported that the company was breached by the Ransomhub ransomware gang after it had analyzed the IoC shared by the company.

The company is investigating the security breach to determine the scope of the incident.

“The incident has caused disruptions and limitation of access to portions of the Company’s business applications supporting aspects of the Company’s operations and corporate functions. The Company believes the unauthorized third party accessed and exfiltrated information from the Company’s systems.” reads the 8-K Form filed with SEC. “The Company is evaluating the nature and scope of the information, and what notifications are required.”

Halliburton confirmed that has already incurred, and may continue to incur, certain expenses related to its response to this incident. The company believes that the incident has not had, and is not reasonably likely to have, a material impact on its financial condition or results of operations.

“The Company remains subject to various risks due to the incident, including the adequacy of processes during the period of disruption, diversion of management’s attention, potential litigation, changes in customer behavior, and regulatory scrutiny.” continues the document.

Pierluigi Paganini

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

(SecurityAffairs – hacking, ransomware)