.The RansomHub ransomware group is felt to be behind the attack on oil titan Halliburton, as well as the US government has actually released a consultatory paying attention to the cybercrime gang.Halliburton, considered the globe's second largest oil solution provider, uncovered on August 21 in an SEC filing that an unwarranted 3rd party had actually accessed to some of its own systems.While no technological details were revealed, the incident feedback measures described by the firm recommended that it might have been actually targeted in a ransomware attack..Given that the happening came to light, there have been actually a number of unconfirmed documents that RansomHub is behind the Halliburton happening, including from reputable ransomware analyst Dominic Alvieri..On Reddit, a few confidential people stated RansomHub being behind the attack, along with one declaring that records was taken which the cybercriminals had actually been actually requiring a $45 thousand ransom money.Bleeping Computer likewise mentioned on Thursday that RansomHub lags the Halliburton attack, based upon some indications of concession (IoCs).RansomHub's leak web site performs not point out Halliburton back then of writing, which advises that-- if they are definitely responsible for the strike-- the cybercriminals are actually still in negotiations along with the company.Halliburton has actually not made public any info beyond its initial claim and also SEC submitting. SecurityWeek has reached out to the provider for verification that it was actually targeted by the RansomHub ransomware team and also are going to upgrade this article if the firm responds.Advertisement. Scroll to carry on analysis.The cybersecurity firm CISA, the FBI, the HHS as well as the Multi-State Information Sharing as well as Review Facility (MS-ISAC) on Thursday published a joint advisory describing RansomHub attacks.The advisory illustrates the methods, techniques and treatments (TTPs) used in RansomHub strikes as well as allotments IoCs that can be made use of to sense as well as prevent breaches..Depending on to the federal government agencies, the RansomHub procedure has encrypted as well as exfiltrated data coming from a minimum of 210 preys due to the fact that its own inception in February 2024..RansomHub's Tor-based water leak site presently lists 180 targets, however the United States federal government is probably knowledgeable about added preys..The authorities advisory mentions that RansomHub sufferers are actually from several essential framework markets, featuring water, IT, federal government companies and also facilities, healthcare, emergency situation services, financial companies, food and farming, office centers, vital manufacturing, interactions, and transit..The advisory, nevertheless, does certainly not discuss preys in the power field, that includes oil business. This shows that the time of the advisory may not be actually related to the Halliburton assault.Related: United States Broadcast Relay Organization Paid $1 Thousand to Ransomware Group.Associated: Ransomware Gang Leaks Information Allegedly Stolen Coming From Microchip Innovation.