Global energy industry service provider Gyrodata this week began sending letters to current and former employees whose information may have been compromised in a ransomware attack.

The 1,000-employee US company’s action follows its own probe into the incident which came to light two months ago. 

Gyrodata’s immediate response was to secure its systems, strengthen their security, hire a cyber security firm and notify law enforcement agencies. 

The company’s investigation found an unauthorised actor gained access to some of its systems from around 16 January to 22 February.  Data potentially obtained may have contained personal information of current and former employees, including names, addresses, dates of birth and drivers’ licence, social security and passport numbers.

“Gyrodata takes the security of personal information very seriously, and we wanted to make individuals whose information was potentially involved aware of our findings,” the Houston-headquartered company said. 

It urges individuals whose information may have been compromised to remain vigilant for incidents of fraud or identity theft by reviewing account statements. 

The company is offering them free credit monitoring and identity protection services, and has established a dedicated call centre to answer questions about the matter.

“The security of your personal information is important to Gyrodata and we sincerely regret that this incident occurred,” added the company, which is supporting law enforcement agencies’ ongoing investigation.

Gyrodata provides surveying, wellbore placement and wellbore characterisation technologies to the global energy industry. It operates in more than 50 countries and has regional offices in the UK, Malaysia and Ecuador.

Register to receive the latest data protection and privacy news and analysis straight to your inbox