.The RansomHub ransomware team is thought to be behind the strike on oil giant Halliburton, and the United States government has actually issued an advisory focusing on the cybercrime group.Halliburton, took into consideration the globe's second largest oil service business, revealed on August 21 in an SEC submission that an unapproved 3rd party had actually gotten to some of its devices.While no technical information were made public, the accident action measures defined due to the provider suggested that it might have been targeted in a ransomware attack..Since the accident appeared, there have actually been actually numerous unconfirmed records that RansomHub lags the Halliburton incident, consisting of from reliable ransomware researcher Dominic Alvieri..On Reddit, a couple of anonymous individuals stated RansomHub being behind the attack, with one stating that information was actually stolen and also the cybercriminals had actually been demanding a $forty five million ransom money.Bleeping Pc additionally stated on Thursday that RansomHub is behind the Halliburton attack, based on some indicators of compromise (IoCs).RansomHub's leakage web site does certainly not mention Halliburton at that time of writing, which suggests that-- if they are without a doubt responsible for the assault-- the cybercriminals are actually still in discussions along with the provider.Halliburton has actually not made public any sort of details past its first declaration as well as SEC declaring. SecurityWeek has connected to the provider for verification that it was actually targeted due to the RansomHub ransomware team and will certainly upgrade this short article if the firm responds.Advertisement. Scroll to carry on reading.The cybersecurity agency CISA, the FBI, the HHS and also the Multi-State Information Discussing as well as Study Facility (MS-ISAC) on Thursday published a joint advisory outlining RansomHub attacks.The advisory describes the strategies, strategies and also procedures (TTPs) used in RansomHub attacks and also reveals IoCs that may be utilized to sense and also avoid intrusions..Depending on to the government agencies, the RansomHub procedure has actually encrypted and exfiltrated records coming from at the very least 210 targets considering that its beginning in February 2024..RansomHub's Tor-based water leak site currently notes 180 victims, however the United States authorities is likely knowledgeable about extra victims..The federal government advising mentions that RansomHub preys are actually from numerous essential commercial infrastructure fields, consisting of water, IT, authorities solutions as well as centers, health care, urgent services, monetary solutions, food items as well as agriculture, industrial facilities, crucial production, communications, and also transport..The advising, nevertheless, performs certainly not point out targets in the energy market, that includes oil companies. This shows that the timing of the advisory might not be related to the Halliburton assault.Connected: American Broadcast Relay League Settled $1 Million to Ransomware Gang.Connected: Ransomware Group Leaks Data Apparently Stolen From Silicon Chip Technology.