Key Points:
- A cyberattack disrupted top U.S. oilfield services firm Halliburton’s operations at its north Houston campus and global networks.
- The company is working with external cybersecurity experts to investigate and resolve the issue.
- The attack underscores the ongoing threat to the energy sector, which cybercriminals have frequently targeted.
- While details of the attack are unclear, it may involve ransomware, a common method hackers use to extort companies.
According to a source familiar with the situation, U.S. oilfield services giant Halliburton experienced a cyberattack on Wednesday. The attack reportedly disrupted operations at the company’s north Houston campus and affected global connectivity networks. Halliburton, one of the world’s largest providers of drilling services and equipment to the energy sector, is working with external cybersecurity experts to identify the cause and mitigate the impact.
As a precautionary measure, the company has instructed some employees not to connect to internal networks. In an emailed statement, a Halliburton spokesperson acknowledged the issue and confirmed that the company is actively investigating the incident. However, specific details regarding the nature of the cyberattack or its full impact on Halliburton’s operations remain unclear.
The attack adds Halliburton to a growing list of major U.S. companies targeted by cybercriminals in recent years. The energy sector, in particular, has been a frequent target of such attacks. In 2021, the Colonial Pipeline, a critical fuel supply line in the U.S., was hit by ransomware, causing a significant disruption in fuel distribution across the East Coast.
The incident, attributed to the DarkSide ransomware group, spiked gasoline prices and caused widespread panic buying. Colonial Pipeline eventually paid a $4.4 million ransom to regain control of its systems, fearing the extent of the breach and the shutdown’s potential duration.
Ransomware attacks typically involve hackers encrypting a victim’s data and demanding a cryptocurrency payment in exchange for a decryption key. If the victim resists, attackers may threaten to leak sensitive data to increase pressure. While the specific details of the Halliburton attack are not yet known, they bear similarities to other high-profile ransomware incidents that have plagued U.S. companies.
The incident highlights the ongoing vulnerability of critical infrastructure and major corporations to cyberattacks, which can have far-reaching consequences for business operations and supply chains. Halliburton, which had nearly 48,000 employees and operations in over 70 countries at the end of last year, is now facing the challenge of securing its systems and preventing further disruptions.