2024-12-02 ENGLOBAL CORP Cybersecurity Incident

Page last updated on January 28, 2025

ENGLOBAL CORP initially disclosed a cybersecurity incident in an SEC 8-K filing on 2024-12-02 16:28:26 EST.

Company Summary

ENGlobal is a specialty engineering services firm that focuses on oil and gas automation solutions, subsea control systems, and engineering.

Incident Details

Material: Unknown
Is Breach: TRUE
Records Compromised: Unknown
Data Types Impacted: No Data Types Tracked (yet)

Compromised Date:
Detected Date: 2024-11-25
Disclosure Date: 2024-12-02
Contained Date:
Recovered Date: 2025-01-27

Attack Goal: Unknown

Costs: No Costs Tracked (yet)

Filings

8-K filed on 2024-12-02

ENGLOBAL CORP filed an 8-K at 2024-12-02 16:28:26 EST
Accession Number: 0001654954-24-015098

Item 1.05 Material Cybersecurity Incidents.

On November 25, 2024, ENGlobal Corporation (the “Company”) became aware of a cybersecurity incident. The preliminary investigation has revealed that a threat actor illegally accessed the Company’s information technology (“IT”) system and encrypted some of its data files. Upon detecting the unauthorized access, the Company immediately took steps to contain, assess and remediate the cybersecurity incident, including beginning an internal investigation, engaging external cybersecurity specialists, and restricting access to its IT system.

As a result of these and other measures, and while the investigation and remediation efforts remain ongoing, access to the Company’s IT system is limited to essential business operations. The timing of restoration of full access to the Company’s IT system remains unclear as of the date of this filing. The Company has not yet determined whether the cybersecurity incident is reasonably likely to materially impact the Company’s financial condition or results of operations.

8-K filed on 2025-01-27

ENGLOBAL CORP filed an 8-K at 2025-01-27 17:00:14 EST
Accession Number: 0001654954-25-000798

Item 1.05 Material Cybersecurity Incidents.

As previously reported in the Original Form 8-K, on November 25, 2024, the Company became aware of a cybersecurity incident. The preliminary investigation revealed that a threat actor illegally accessed the Company’s information technology (“IT”) system and encrypted some of its data files. Upon detecting the unauthorized access, the Company immediately took steps to contain, assess and remediate the cybersecurity incident, including beginning an internal investigation, engaging external cybersecurity specialists, and restricting access to its IT system.

The cybersecurity incident limited the Company’s ability to access portions of its business applications that supported aspects of the Company’s operations and corporate functions, including financial and operating reporting systems for approximately six weeks.

As of the date hereof, the Company’s operations and corporate functions have been fully restored, and the Company believes that the threat actor no longer has access to the Company’s IT system. As part of its remediation efforts, the Company is working with cybersecurity experts to reinforce its IT system, strengthen its surveillance of cybersecurity threats and prevent future unauthorized access to its IT system.

The cybersecurity incident involved the threat actor’s access to a portion of the Company’s IT system that contained sensitive personal information. The Company intends to provide notifications to affected and potentially affected parties and applicable regulatory agencies as required by federal and state law.

Based on the information available to the Company as of the date hereof, the Company believes that the incident has not had a material impact and is not reasonably likely to have a material impact, on the Company, including the Company’s financial condition and results of operations, except as disclosed herein.

Company Information