Oil Giant Halliburton’s Operations Disrupted by Cyber Incident
US oil giant Halliburton confirmed that its computer systems were hit by a cyberattack affecting operations at its Texas offices. Learn more about the incident and the impact of the outage.
- Halliburton, the US’s second-largest energy services firm, has been disrupted by a reported cyber incident.
- While technical details of the breach were not disclosed, a ransomware attack is suspected.
Halliburton, one of the largest oilfield service companies in the world, has confirmed a cyberattack that has significantly disrupted operations, particularly at its Houston campus and, to a limited extent, across other global locations. The attack detected on August 21 forced the company to isolate affected systems and stopped employees from accessing specific internal networks.
Halliburton is one of the largest energy services companies, with over 48,000 employees and an annual revenue of $23 billion. The company provides services such as identifying oil and gas resources and assisting oil field owners in managing extraction. Before the invasion of Ukraine, it was a partner to Russia’s Gazprom, Rosneft, and Lukoil, although these operations were sold in September 2022.
Operational Impact and Response
The incident is suspected to be a ransomware attack. However, the company has been tight-lipped about its details. Halliburton has activated its pre-planned response protocols and is working with cybersecurity experts to assess the extent of the breach and promptly restore systems. The US Department of Energy said the Halliburton incident had not impacted energy services.
See More: Toyota Confirms Exposure of Customer and Employee Data in Data Breach
Threats to Critical Infrastructure
While Halliburton has not officially disclosed the nature of the attack, the situation is similar to other high-profile attacks on critical infrastructure, such as the 2021 Colonial Pipeline incident. That attack resulted in widespread fuel shortages and highlighted significant vulnerabilities in the energy sector.
The FBI issued an alert to the US energy sector last year about an increase in Chinese and Russian cyberattacks targeting the industry, including criminal and state-sponsored campaigns. The attack underscores the growing frequency and sophistication of cyber threats targeting critical infrastructure. Over a third of ransomware attacks hit critical industrial organizations in the past year, highlighting the ever-increasing danger to sectors vital to economic stability and national security.
Potential Consequences
As the situation continues to evolve, the long-term implications of the security incident on Halliburton and associated energy companies remain uncertain. The company has not yet provided a timeline for complete recovery, and the operational and financial aspects of the incident are still being assessed.
SEC Cybersecurity Disclosure Requirements
In light of the attack, as a publicly traded company, Halliburton should disclose significant cybersecurity incidents to comply with regulations by the US Securities and Exchange Commission (SEC). The SEC mandates that companies report cybersecurity incidents on Form 8-K within four business days of discovering the incident.
The disclosure should include details about the nature of the incident, its impact, and the company’s response. Considering the long-term implications of the Halliburton breach, this regulatory requirement will enable more information to be available in the coming days.
Takeaways
The attack highlights the need for robust cybersecurity measures to protect critical infrastructure from such threats in the future. The 2021 Colonial Pipeline attack halted operations for several days, eventually resulting in a ransom payment of over $4 million and more in recovery costs. If Halliburton operations are similarly affected, the consequences can be severe for the company and the energy industry in the short term.
LATEST NEWS STORIES
