ENGlobal
Company Details
Linkedin ID:
englobal
Website:
Employees number:
1,145
Number of followers:
14,413
NAICS:
211
Industry Type:
Homepage:
englobal.com
IP Addresses:
0
Company ID:
ENG_2470741
Scan Status:
In-progress
ENGlobal Company CyberSecurity Posture
englobal.com
Who We Are ENG Founded in 1985, ENGlobal (NASDAQ: ENG) is a specialty engineering services firm that focuses on automation solutions and select EPCM projects for the energy industry and markets throughout the world. Our Automation segment specializes in integrated services related to the design, fabrication and implementation of advanced automation, control, instrumentation and process analytical systems. The EPCM segment provides consulting services for the development, management and execution of projects requiring professional engineering, construction management, and related support services. Markets Served: • Upstream • Midstream • Downstream • Pulp and Paper • Alternative Energy • Government Core Values: • HSE (Health, Safety and Environment) commitment • Integrity and Accountability always • Teamwork in all we do • Quality throughout • Communication from the start Vision: Our vision is to become the preferred provider of innovative automation integration services and select EPCM projects to clients across the globe. Mission Statement: Our mission is to safely deliver solutions that ensure success for all stakeholders, while demonstrating good stewardship of the world around us.
ENGlobal A.I CyberSecurity Scoring
ENGlobal Risk Score (AI oriented)Between 550 and 599
ENGlobal
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
ENGlobal Global Score (TPRM)XXXX
ENGlobal
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
ENGlobal Company CyberSecurity News & History
Past Incidents
2
Attack Types
1
ENGlobal
Ransomware
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: ENGlobal encountered a ransomware attack in November 2024, compromising personal information. The attack led to unauthorized IT system access and data encryption, but ENGlobal's preliminary investigation suggests no material operational impact. Despite encrypted data files, the company's quick response included containment measures, engaging cybersecurity experts, and IT systems access restrictions. The attack did not result in noticeable financial consequences or operational disruptions, with systems restored and the attacker removed. Notifications to affected individuals and regulatory bodies are planned while operations have resumed normally.
ENGlobal Corporation
Ransomware
Rankiteo Explanation
Attack threatening the organization’s existence
Description: ENGlobal Corporation suffered a detrimental ransomware attack that impeded its operational capabilities. The malicious actors managed to infiltrate the company's IT systems on November 25, 2024, resulting in the encryption of certain data files. Active measures were taken to contain and evaluate the incident, with the aid of external cybersecurity experts. Although brought under control to maintain core business functions, complete IT system recovery timelines remain uncertain. The potential repercussions to the company's financial stability and operational proceedings are under evaluation, and no acknowledgments have been made by any ransomware group for the attack.
ENGlobal Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for ENGlobal
Incidents vs Oil and Gas Industry Average (This Year)
No incidents recorded for ENGlobal in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for ENGlobal in 2025.
Incident Types ENGlobal vs Oil and Gas Industry Avg (This Year)
No incidents recorded for ENGlobal in 2025.
Incident History — ENGlobal (X = Date, Y = Severity)
ENGlobal cyber incidents detection timeline including parent company and subsidiaries
ENGlobal Company Subsidiaries
Who We Are ENG Founded in 1985, ENGlobal (NASDAQ: ENG) is a specialty engineering services firm that focuses on automation solutions and select EPCM projects for the energy industry and markets throughout the world. Our Automation segment specializes in integrated services related to the design, fabrication and implementation of advanced automation, control, instrumentation and process analytical systems. The EPCM segment provides consulting services for the development, management and execution of projects requiring professional engineering, construction management, and related support services. Markets Served: • Upstream • Midstream • Downstream • Pulp and Paper • Alternative Energy • Government Core Values: • HSE (Health, Safety and Environment) commitment • Integrity and Accountability always • Teamwork in all we do • Quality throughout • Communication from the start Vision: Our vision is to become the preferred provider of innovative automation integration services and select EPCM projects to clients across the globe. Mission Statement: Our mission is to safely deliver solutions that ensure success for all stakeholders, while demonstrating good stewardship of the world around us.
Loading...
ENGlobal Similar Companies
Amec Foster Wheeler
Wood Group has combined with Amec Foster Wheeler to form a new global leader in the delivery of project, engineering and technical services to energy and industrial markets. To find out more about Wood visit our new website at www.woodplc.com For all the latest updates and job news follow Wood on L
Petrobras
Nosso propósito é prover energia que assegure prosperidade de forma ética, justa, segura e competitiva. Queremos ser a melhor empresa diversificada e integrada de energia na geração de valor, construindo um mundo mais sustentável, conciliando o foco em óleo e gás com a diversificação em negócios de
Ecopetrol
Ecopetrol (NYSE: EC) es la compañía más grande en Colombia y uno de los principales grupos de energía de Latinoamérica. Cuenta con más de 18.000 empleados y es responsable del 60% de la producción de hidrocarburos en Colombia. Es propietaria de las dos refinerías del Colombia y de la gran parte de l
TechnipFMC
TechnipFMC is a leading technology provider to the traditional and new energies industry, delivering fully integrated projects, products, and services. With our proprietary technologies and comprehensive solutions, we are transforming our clients’ project economics, helping them unlock new possibi
Hindustan Petroleum Corporation Limited
Hindustan Petroleum Corporation Limited (HPCL) is a Maharatna Central Public Sector Enterprise (CPSE) and a S&P Global Platts Top 250 Global Energy Company. HPCL has a strong presence in downstream hydrocarbon sector of the country with a sizable share in petroleum product marketing and also has bus
Koch Engineered Solutions
Koch Engineered Solutions (KES) provides uniquely engineered solutions in construction; mass and heat transfer; combustion and emissions controls; filtration; separation; materials applications; automation and actuation. KES is located in Wichita, Kansas, and is a subsidiary of Koch Industries, one
PETRONAS
Petroliam Nasional Berhad (PETRONAS) is a leading global energy company committed to powering society’s progress in a responsible and sustainable manner. With close to 50,000 employees and a global reach spanning over 100 countries, we are ranked among the world’s largest corporations by revenue in
Halliburton
We collaborate and engineer solutions to maximize asset value for our customers. Founded in 1919, Halliburton is one of the world's largest providers of products and services to the energy industry. With more than 45,000 employees, representing 130 nationalities in more than 80 countries, the compan
Transocean
Transocean is a leading international provider of offshore contract drilling services for oil and gas wells. The company specializes in technically demanding sectors of the global offshore drilling business, with a particular focus on ultra-deepwater and harsh environment drilling services and opera
.png)
ENGlobal CyberSecurity News
January 30, 2025 08:00 AM
ENGlobal details cybersecurity breach, as CenterPoint Energy probes potential data leak
ENGlobal details cybersecurity breach, as CenterPoint Energy probes potential data leak. January 30, 2025
January 29, 2025 08:00 AM
ENGlobal energy corp says hackers accessed personal data in Nov breach
ENGlobal revealed on Tuesday that the attackers who breached the company last November were able to access sensitive personal information from its network...
January 28, 2025 08:00 AM
ENGlobal Cyber-Attack Exposes Sensitive Data
Energy contractor ENGlobal reported that sensitive personal data was stolen by threat actors, with the incident disrupting operations for...
January 28, 2025 08:00 AM
Ransomware attack kept major energy industry contractor out of some systems for 6 weeks
Oklahoma-based ENGlobal Corporation said in an updated 8-K filing with the SEC that company officials were locked out of financial systems...
December 05, 2024 03:55 AM
Ransomware attack forces US government contractor ENGlobal to shut down some operations
ENGlobal files new report with SEC detailing a ransomware attack; It said the attack forced it to shut down parts of its infrastructure...
December 04, 2024 08:00 AM
ENGlobal faces cybersecurity breach, leads to ‘limited’ access to essential business operations
ENGlobal faces cybersecurity breach, leads to 'limited' access to essential business operations ... ENGlobal Corporation, an engineering and...
December 04, 2024 08:00 AM
Ransomware attack forces US government contractor ENGlobal to shut down some operations
ENGlobal files new report with SEC detailing a ransomware attack; It said the attack forced it to shut down parts of its infrastructure...
December 03, 2024 08:00 AM
ENGlobal IT systems impacted by ransomware attack
Dive Insight: · The attack targeting ENGlobal marks at least the third disruptive cybersecurity incident impacting energy sector providers since...
December 03, 2024 08:00 AM
US government, energy sector contractor hit by ransomware
ENGlobal, a Texas-based engineering and automation contractor for companies in the energy sector, has had its data encrypted by attackers.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
ENGlobal CyberSecurity History Information
Official Website of ENGlobal
The official website of ENGlobal is http://www.englobal.com.
ENGlobal’s AI-Generated Cybersecurity Score
According to Rankiteo, ENGlobal’s AI-generated cybersecurity score is 553, reflecting their Very Poor security posture.
How many security badges does ENGlobal’ have ?
According to Rankiteo, ENGlobal currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does ENGlobal have SOC 2 Type 1 certification ?
According to Rankiteo, ENGlobal is not certified under SOC 2 Type 1.
Does ENGlobal have SOC 2 Type 2 certification ?
According to Rankiteo, ENGlobal does not hold a SOC 2 Type 2 certification.
Does ENGlobal comply with GDPR ?
According to Rankiteo, ENGlobal is not listed as GDPR compliant.
Does ENGlobal have PCI DSS certification ?
According to Rankiteo, ENGlobal does not currently maintain PCI DSS compliance.
Does ENGlobal comply with HIPAA ?
According to Rankiteo, ENGlobal is not compliant with HIPAA regulations.
Does ENGlobal have ISO 27001 certification ?
According to Rankiteo,ENGlobal is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of ENGlobal
ENGlobal operates primarily in the Oil and Gas industry.
Number of Employees at ENGlobal
ENGlobal employs approximately 1,145 people worldwide.
Subsidiaries Owned by ENGlobal
ENGlobal presently has no subsidiaries across any sectors.
ENGlobal’s LinkedIn Followers
ENGlobal’s official LinkedIn profile has approximately 14,413 followers.
NAICS Classification of ENGlobal
ENGlobal is classified under the NAICS code 211, which corresponds to Oil and Gas Extraction.
ENGlobal’s Presence on Crunchbase
No, ENGlobal does not have a profile on Crunchbase.
ENGlobal’s Presence on LinkedIn
Yes, ENGlobal maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/englobal.
Cybersecurity Incidents Involving ENGlobal
As of December 04, 2025, Rankiteo reports that ENGlobal has experienced 2 cybersecurity incidents.
Number of Peer and Competitor Companies
ENGlobal has an estimated 10,475 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at ENGlobal ?
Incident Types: The types of cybersecurity incidents that have occurred include Ransomware.
What was the total financial impact of these incidents on ENGlobal ?
Total Financial Loss: The total financial loss from these incidents is estimated to be $0.
How does ENGlobal detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an third party assistance with external cybersecurity experts, and containment measures with active measures were taken to contain and evaluate the incident, and third party assistance with cybersecurity experts, and containment measures with it systems access restrictions, and recovery measures with systems restored, and communication strategy with notifications to affected individuals and regulatory bodies..
Incident Details
Can you provide details on each incident ?
Title: Ransomware Attack on ENGlobal Corporation
Description: ENGlobal Corporation suffered a detrimental ransomware attack that impeded its operational capabilities. The malicious actors managed to infiltrate the company's IT systems on November 25, 2024, resulting in the encryption of certain data files. Active measures were taken to contain and evaluate the incident, with the aid of external cybersecurity experts. Although brought under control to maintain core business functions, complete IT system recovery timelines remain uncertain. The potential repercussions to the company's financial stability and operational proceedings are under evaluation, and no acknowledgments have been made by any ransomware group for the attack.
Date Detected: 2024-11-25
Type: Ransomware
Title: ENGlobal Ransomware Attack
Description: ENGlobal encountered a ransomware attack in November 2024, compromising personal information. The attack led to unauthorized IT system access and data encryption, but ENGlobal's preliminary investigation suggests no material operational impact. Despite encrypted data files, the company's quick response included containment measures, engaging cybersecurity experts, and IT systems access restrictions. The attack did not result in noticeable financial consequences or operational disruptions, with systems restored and the attacker removed. Notifications to affected individuals and regulatory bodies are planned while operations have resumed normally.
Date Detected: November 2024
Type: Ransomware Attack
Attack Vector: Unauthorized IT system access
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident ?
Incident : Ransomware ENG000120424
Operational Impact: Impeded operational capabilities
Incident : Ransomware Attack ENG000012925
Financial Loss: None
Data Compromised: Personal Information
Systems Affected: IT Systems
Downtime: None
Operational Impact: None
What is the average financial loss per incident ?
Average Financial Loss: The average financial loss per incident is $0.00.
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Personal Information.
Which entities were affected by each incident ?
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Ransomware ENG000120424
Third Party Assistance: External cybersecurity experts
Containment Measures: Active measures were taken to contain and evaluate the incident
Incident : Ransomware Attack ENG000012925
Third Party Assistance: Cybersecurity Experts
Containment Measures: IT systems access restrictions
Recovery Measures: Systems restored
Communication Strategy: Notifications to affected individuals and regulatory bodies
How does the company involve third-party assistance in incident response ?
Third-Party Assistance: The company involves third-party assistance in incident response through External cybersecurity experts, Cybersecurity Experts.
Data Breach Information
What type of data was compromised in each breach ?
Incident : Ransomware ENG000120424
Data Encryption: Certain data files were encrypted
Incident : Ransomware Attack ENG000012925
Type of Data Compromised: Personal Information
Data Encryption: Yes
Personally Identifiable Information: Yes
How does the company handle incidents involving personally identifiable information (PII) ?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through by active measures were taken to contain and evaluate the incident and it systems access restrictions.
Ransomware Information
Was ransomware involved in any of the incidents ?
Incident : Ransomware ENG000120424
Data Encryption: Certain data files were encrypted
Incident : Ransomware Attack ENG000012925
Data Encryption: Yes
How does the company recover data encrypted by ransomware ?
Data Recovery from Ransomware: The company recovers data encrypted by ransomware through Systems restored.
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident ?
Incident : Ransomware Attack ENG000012925
Regulatory Notifications: Planned
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Ransomware Attack ENG000012925
Investigation Status: Preliminary investigation
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Notifications to affected individuals and regulatory bodies.
Post-Incident Analysis
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as External cybersecurity experts, Cybersecurity Experts.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2024-11-25.
Impact of the Incidents
What was the highest financial loss from an incident ?
Highest Financial Loss: The highest financial loss from an incident was None.
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident was Personal Information.
Response to the Incidents
What third-party assistance was involved in the most recent incident ?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was External cybersecurity experts, Cybersecurity Experts.
What containment measures were taken in the most recent incident ?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident were Active measures were taken to contain and evaluate the incident and IT systems access restrictions.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach was Personal Information.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Preliminary investigation.
.png)
Latest Global CVEs (Not Company-Specific)
Description
MCP Server Kubernetes is an MCP Server that can connect to a Kubernetes cluster and manage it. Prior to 2.9.8, there is a security issue exists in the exec_in_pod tool of the mcp-server-kubernetes MCP Server. The tool accepts user-provided commands in both array and string formats. When a string format is provided, it is passed directly to shell interpretation (sh -c) without input validation, allowing shell metacharacters to be interpreted. This vulnerability can be exploited through direct command injection or indirect prompt injection attacks, where AI agents may execute commands without explicit user intent. This vulnerability is fixed in 2.9.8.
Risk Information
cvss3
Base: 6.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H
Description
XML external entity (XXE) injection in eyoucms v1.7.1 allows remote attackers to cause a denial of service via crafted body of a POST request.
Description
An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local network to access administrative functions of the device (e.g. file upload, firmware update, reboot...) via a crafted authentication bypass.
Description
Cal.com is open-source scheduling software. Prior to 5.9.8, A flaw in the login credentials provider allows an attacker to bypass password verification when a TOTP code is provided, potentially gaining unauthorized access to user accounts. This issue exists due to problematic conditional logic in the authentication flow. This vulnerability is fixed in 5.9.8.
Risk Information
cvss4
Base: 9.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Rhino is an open-source implementation of JavaScript written entirely in Java. Prior to 1.8.1, 1.7.15.1, and 1.7.14.1, when an application passed an attacker controlled float poing number into the toFixed() function, it might lead to high CPU consumption and a potential Denial of Service. Small numbers go through this call stack: NativeNumber.numTo > DToA.JS_dtostr > DToA.JS_dtoa > DToA.pow5mult where pow5mult attempts to raise 5 to a ridiculous power. This vulnerability is fixed in 1.8.1, 1.7.15.1, and 1.7.14.1.
Risk Information
cvss4
Base: 5.5
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=englobal' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
