clop attacks TIDEWATER

Incident Date:

March 1, 2022

World map



clop attacks TIDEWATER






Amelia, USA

Louisiana, USA

First Reported

March 1, 2022

Tidewater Hit by Ransomware Attack

Tidewater, a prominent entity in the Energy, Utilities & Waste sector, recently fell victim to a ransomware attack. This cybersecurity breach was publicly acknowledged by the ransomware collective known as Clop, through an announcement on their dark web leak site. Tidewater, which operates under the umbrella of Swire Pacific Offshore (SPO), offers a variety of services such as offshore supply, construction support, and fast supply vessels. The company's official online presence can be found at

While specific details regarding Tidewater's market position and size remain unspecified, an examination of the company's website reveals a strong emphasis on sustainability, safety, and regulatory compliance. This focus underscores Tidewater's dedication to responsible and ethical business operations. Nonetheless, the precise vulnerabilities that made Tidewater a target for cybercriminals have not been elaborated upon in available information.

The ramifications of the ransomware attack include the compromise of personal data and the subsequent necessity to disable portions of the company's digital infrastructure. Tidewater's IT and cybersecurity personnel are actively collaborating with law enforcement and other relevant authorities to conduct a thorough investigation into the incident. It is important to note that the attack did not impact the company's water or wastewater treatment functionalities.

Details concerning the identity of the perpetrators, the origin of the attack, or the demands made by the hackers have not been disclosed. Tidewater has proactively communicated with appropriate regulatory bodies and law enforcement agencies. Additionally, external forensic experts have been engaged to aid in the recovery process and to mitigate the consequences of the attack.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.