A crippling ransomware attack left ENGlobal Corporation, a major contractor for both the energy industry and the federal government, locked out of critical financial systems for six weeks, exposing sensitive personal information and disrupting essential business operations.
ENGlobal disclosed the extent of the attack in a filing with the U.S. Securities and Exchange Commission (SEC) on Monday, revealing that the breach, which began on November 25, severely limited access to core business applications.
“The cybersecurity incident limited the Company’s ability to access portions of its business applications that supported aspects of the Company’s operations and corporate functions, including financial and operating reporting systems for approximately six weeks,” the company stated.
According to ENGlobal, full operations and corporate functions have now been restored, and the company no longer believes the attackers have access to its IT systems. However, the breach was far more than just an inconvenience—it also involved unauthorized access to sensitive personal data. Those impacted will be notified, per SEC regulations.
A Prolonged Disruption Unlike Most Ransomware Attacks
The attack forced ENGlobal to restrict employee access to its IT systems, limiting use to only essential business operations while investigators worked to contain the breach. While ransomware attacks frequently disrupt businesses, a six-week-long system lockdown is far longer than most organizations experience.
A survey released Tuesday found that, on average, businesses take about 132 hours (roughly 17 working days) to recover from a ransomware attack—meaning ENGlobal’s six-week ordeal was an extreme outlier in the scope of its impact.
Trevor Dearing, director of critical infrastructure at cybersecurity firm Illumio, emphasized the growing severity of ransomware threats:
“Ransomware is more pervasive and impactful than ever, with more organizations forced to suspend operations or experiencing major business failure because of attacks.”
Despite the widespread damage, ENGlobal does not expect the attack to have a “material impact” on its financial standing. The Oklahoma-based firm, founded in 1985, specializes in designing and constructing automated control systems for both commercial companies and the U.S. government, including the Department of Defense. The company reported nearly $6 million in revenue last quarter and $18.4 million for the first nine months of the year.
ENGlobal describes itself as a specialist in “turnkey automation and instrumentation systems for the U.S. Defense industry,” raising concerns about the potential national security implications of such an attack.
No Ransomware Group Has Claimed Responsibility
Unusually, no known ransomware gang has claimed responsibility for the ENGlobal attack. Many cybercriminal groups publicize their successful breaches to pressure victims into paying ransoms. The silence in this case could suggest one of several possibilities: the attackers may have been state-sponsored actors, the ransom negotiations may have been handled privately, or the company may have refused to engage with the hackers at all.
Whatever the case, ENGlobal’s six-week battle to restore its systems serves as yet another stark warning that no organization—no matter how crucial its role in national infrastructure—is safe from ransomware attacks. The cyberwarfare landscape is growing more aggressive, and companies that fail to harden their defenses will continue to find themselves at the mercy of increasingly sophisticated and persistent hackers.
Restore Democracy: End Lobbying and Return Power to the People! Sign Petition Here!
Support truth, health, and preparedness by shopping the Alex Jones Store through our link. Every purchase helps sustain independent voices and earns us a 10% share to fuel our mission. Shop now and make a difference!
https://thealexjonesstore.com?sca_ref=7730615.EU54Mw6oyLATer7a
Sponsored • TRJ Ads
Inquiries: contact@therealistjuggernaut.com
