lockbit3 attacks AIP Pipe line inc.

Incident Date:

September 14, 2022

World map



lockbit3 attacks AIP Pipe line inc.


AIP Pipe line inc.




San Antonio, USA

Texas, USA

First Reported

September 14, 2022

AIP Pipeline Inc. Ransomware Attack by Lockbit3

AIP Pipeline Inc., a company specializing in pipeline construction and maintenance, has been targeted by the ransomware group Lockbit3. The attack was announced on the group's dark web leak site. AIP Pipeline Inc. operates in the Energy, Utilities & Waste sector and has offices in San Antonio and Houston, Texas.

Company Overview

AIP Pipeline Inc. provides a range of services, including engineering, operations managers, field superintendents, chief inspectors, inspectors, facility inspectors, right-of-way inspectors, and safety inspectors. The company has a strong focus on safety, ensuring regulatory compliance and promoting safety at all times, which results in cost savings for their clients.

Size and Industry Standout

AIP Pipeline Inc. is part of the Primoris Services Corporation, which had a total revenue of $3.6 billion in fixed backlog and $1.9 billion in master service agreement (MSA) backlog as of August 1, 2022. The company operates in the pipeline construction and maintenance sector, which is a critical part of the energy infrastructure.


The ransomware attack on AIP Pipeline Inc. highlights the vulnerabilities of companies in the energy sector to cyber threats. The company's website does not provide information on their cybersecurity measures or any certifications related to information security. However, the industry is known to face challenges such as compliance with environmental laws, which can impact operations and the ability to sell, lease, or use properties as collateral for financing.

The ransomware attack on AIP Pipeline Inc. by Lockbit3 underscores the importance of robust cybersecurity measures in the energy sector. Companies in this sector must prioritize cybersecurity to protect their operations and customer trust.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.