In a regulatory filing, Halliburton said that as previously disclosed, on August 21, the company became aware that an unauthorized third party gained access to certain of its systems. When it learned of the issue, the company activated its cybersecurity response plan and launched an investigation internally with the support of external advisors to assess and remediate the unauthorized activity. The company’s response efforts included proactively taking certain systems offline to help protect them and notifying law enforcement. The company’s ongoing investigation and response include restoration of its systems and assessment of impacted data. Likewise, the company has been and is communicating with its customers and other stakeholders regarding the incident. The company is following its process-based safety standards for ongoing operations under the Halliburton Management System and is working to identify effects of the incident. The company continues to provide its products and services to customers globally. The incident has caused disruptions and limitation of access to portions of the company’s business applications supporting aspects of the company’s operations and corporate functions. The company believes the unauthorized third party accessed and exfiltrated information from the company’s systems. The company is evaluating the nature and scope of the information, and what notifications are required. The company has incurred, and may continue to incur, certain expenses related to its response to this incident. The company believes that the incident has not had, and is not reasonably likely to have, a material impact on the company’s financial condition or results of operations.
next post