Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Ransomware

Texas Oilfield Supplier Newpark Hit by Ransomware 

Texas-based oilfield supplier Newpark Resources says a ransomware attack disrupted information systems and business applications.

Oil sector ransomware attack

Newpark Resources this week announced that access to certain information systems and business applications has been disrupted following a ransomware attack.

The incident was discovered on October 29 and a cybersecurity response plan was immediately activated, the Texas-based provider of drilling fluids systems and composite matting systems for the oilfield sector said in a filing with the Securities and Exchange Commission (SEC).

“The incident has caused disruptions and limitation of access to certain of the company’s information systems and business applications supporting aspects of the company’s operations and corporate functions, including financial and operating reporting systems,” Newpark said.

According to the company, reverting to downtime procedures allowed it to continue manufacturing and field operations uninterrupted. 

“Based on the company’s current knowledge of the facts and circumstances related to this incident, the company believes that this incident is not reasonably likely to materially impact the company’s financial conditions or results of operations,” it said.

Newpark did not share details on how the attackers accessed its network, nor on which threat actor might be responsible for the incident. SecurityWeek has not seen any known ransomware groups claiming responsibility for the attack.

“Critical sectors like oil and gas are a top target for ransomware attacks looking to disrupt critical industries. With the Trump administration stating that it is going to increase the number of oil drilling sites across the US, it’s clear that the sector will be under an increasing threat,” Claroty general manager Andrew Lintell said in an emailed comment.

Lintell recommends that oil and gas operators maintain visibility over their cyber-physical systems (CPS) through real-time asset inventories that would allow them to identify vulnerabilities and secure drilling sites, refineries, and supply chains.

Advertisement. Scroll to continue reading.

“Protection can be further enhanced through network segmentation which limits malware spreading in the event of a breach, protecting essential systems,” Lintell said.

Related: Designing a Future-focused Cybersecurity Investment Strategy

Related: TSA Updates Pipeline Cybersecurity Requirements

Related: Honeypot Surprise: Researchers Catch Attackers Exposing 15,000 Stolen Credentials in S3 Bucket

Related: Industrial Secure Remote Access Is Essential, but Firms Concerned About Risks

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Don’t miss this Live Attack demonstration to learn how hackers operate and gain the knowledge to strengthen your defenses.

Register

Join us as we share best practices for uncovering risks and determining next steps when vetting external resources, implementing solutions, and procuring post-installation support.

Register

People on the Move

SSH Communications Security has appointed Pauli Haikonen as the company’s Chief Information Security Officer (CISO).

Cloud and container security firm Sysdig has tapped William Welch as CEO on its path to an IPO.

Dave Scher has been promoted to Deputy Chief Information Officer at MITRE.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.