Cyberattack strikes Halliburton, affecting selected operations
Halliburton Suffers Cyberattack, Activates Response Plan
Halliburton, one of the world's largest diversified energy services companies, has suffered a significant cyberattack that led to unauthorized access to some of its internal systems and the theft of sensitive information. The incident was first detected on March 5, 2025, by Halliburton's internal IT security team.
The exact nature and extent of the data compromised have not been publicly disclosed. However, the company has confirmed that some systems were affected, prompting a shutdown in parts of its IT environment. As of the latest updates, no ransom demand or ransomware activation has been reported.
Halliburton has taken swift action to address the situation. The company has engaged third-party cybersecurity experts, notified regulatory bodies including the Securities and Exchange Commission, and is cooperating with law enforcement agencies. Halliburton is also communicating with customers and other stakeholders about the incident.
The company has proactively shut off certain systems and notified law enforcement after learning of the intrusion. Employees have been asked not to connect to internal networks as a precautionary measure. Halliburton is working to enhance its cybersecurity measures to prevent any recurrence, although the exact measures have not been fully disclosed.
The attack on Halliburton underscores the growing vulnerability of critical infrastructures in a digitalized world. Chris Grove, director of cybersecurity strategy at Nozomi Networks, highlighted that the incident serves as a reminder that cybersecurity is crucial for public safety and operational resilience. The Department of Energy is aware of the cyberattack on Halliburton and is coordinating with interagency partners regarding the incident.
The incident comes at a time when the expansion of cyber-physical systems attack surfaces makes the security landscape more complex and challenging. Industries like oil and gas are prime targets for ransomware and nation-state attackers. Grove notes that this attack on Halliburton underscores the need for increased vigilance and robust cybersecurity measures to protect critical infrastructures.
As the investigation into the Halliburton cyberattack continues, details on the method of attack, full scope of data compromised, and exact business impact remain limited. The company continues to respond with coordinated efforts involving cybersecurity experts and law enforcement to contain the incident, conduct a thorough forensic analysis, and ensure regulatory compliance.
[1] Reuters, "Halliburton hit by cyberattack, activates response plan," March 6, 2025. [3] Halliburton, 8-K filing with the Securities and Exchange Commission, August 2025.
