ENGlobal Cyberattack: Sensitive Personal Data Compromised in November 2024 Ransomware Incident

ENGlobal Cyberattack: Sensitive Personal Data Compromised in November 2024 Ransomware Incident

Houston, Texas – January 28, 2025 – ENGlobal, a U.S. engineering firm specializing in services for the federal government and critical infrastructure organizations, has publicly acknowledged a significant cyberattack that occurred in November 2024. In a recent filing with the U.S. Securities and Exchange Commission (SEC), ENGlobal disclosed that hackers successfully accessed "sensitive personal information" from its systems during the incident. This breach raises serious concerns about the security of sensitive data held by companies that support vital sectors of the economy. The company's disclosure also revealed that the attackers encrypted some of ENGlobal's data files, strongly suggesting a ransomware component to the attack. This type of attack often involves criminals encrypting a company's data and then demanding a ransom payment in exchange for the decryption key. The cyberattack caused significant disruption to ENGlobal's operations, forcing some …