Ransomware : Your Feared Information Technology Catastrophe
Crypto-Ransomware  Recovery ConsultantsRansomware has become a too-frequent cyberplague that presents an enterprise-level threat for organizations unprepared for an assault. Versions of ransomware such as Dharma, WannaCry, Locky, NotPetya and MongoLock cryptoworms have been running rampant for many years and still inflict damage. Modern strains of crypto-ransomware like Ryuk, Maze, Sodinokibi, Netwalker, Conti and Egregor, plus more unnamed viruses, not only encrypt online data but also infect all accessible system backups. Information replicated to off-site disaster recovery sites can also be corrupted. In a poorly designed data protection solution, it can render automatic restore operations useless and effectively sets the network back to square one.

Restoring services and data following a ransomware outage becomes a sprint against the clock as the victim fights to contain and eradicate the ransomware and to resume business-critical operations. Because ransomware takes time to move laterally, attacks are usually sprung during nights and weekends, when successful penetrations may take more time to notice. This multiplies the difficulty of rapidly assembling and orchestrating a knowledgeable response team.

Progent offers a variety of solutions for securing Beverly Hills businesses from ransomware events. Among these are staff education to become familiar with and not fall victim to phishing scams, ProSight Active Security Monitoring for remote monitoring and management, along with deployment of modern security appliances with machine learning technology to rapidly detect and suppress day-zero threats. Progent also offers the services of expert ransomware recovery professionals with the talent and commitment to reconstruct a breached environment as rapidly as possible.

Progent's Ransomware Recovery Help
After a ransomware event, sending the ransom in cryptocurrency does not guarantee that criminal gangs will provide the needed keys to decrypt any of your data. Kaspersky Labs determined that 17% of crypto-ransomware victims never restored their files after having sent off the ransom, resulting in increased losses. The risk is also expensive. Ryuk ransoms frequently range from fifteen to forty BTC ($120,000 and $400,000). This is well higher than the typical ransomware demands, which ZDNET determined to be in the range of $13,000 for smaller businesses. The other path is to setup from scratch the essential parts of your Information Technology environment. Without access to full data backups, this requires a broad range of skills, top notch project management, and the capability to work 24x7 until the task is completed.

For two decades, Progent has made available professional IT services for businesses across the United States and has earned Microsoft's Gold Partnership certification status in the Datacenter and Cloud Productivity competencies. Progent's pool of subject matter experts includes consultants who have attained top certifications in foundation technologies such as Microsoft, Cisco, VMware, and major distributions of Linux. Progent's cybersecurity specialists have garnered internationally-renowned industry certifications including CISA, CISSP-ISSAP, CRISC, and GIAC. (Refer to Progent's certifications). Progent also has experience in accounting and ERP applications. This breadth of experience provides Progent the capability to knowledgably determine critical systems and organize the remaining pieces of your computer network environment after a crypto-ransomware event and configure them into an operational network.

Progent's recovery team deploys top notch project management tools to coordinate the complicated recovery process. Progent understands the importance of acting rapidly and in concert with a client's management and IT resources to assign priority to tasks and to put the most important applications back online as fast as humanly possible.

Customer Story: A Successful Ransomware Attack Response
A business sought out Progent after their network system was brought down by Ryuk ransomware. Ryuk is believed to have been created by Northern Korean state sponsored cybercriminals, suspected of adopting algorithms leaked from the United States NSA organization. Ryuk seeks specific businesses with limited ability to sustain operational disruption and is one of the most lucrative examples of ransomware malware. Well Known victims include Data Resolution, a California-based information warehousing and cloud computing business, and the Chicago Tribune. Progent's customer is a small manufacturer headquartered in Chicago with around 500 staff members. The Ryuk event had disabled all company operations and manufacturing processes. The majority of the client's information backups had been directly accessible at the time of the attack and were eventually encrypted. The client was actively seeking loans for paying the ransom (exceeding $200K) and praying for good luck, but in the end engaged Progent.


"I cannot speak enough about the care Progent provided us throughout the most stressful period of (our) companyís life. We would have paid the criminal gangs if not for the confidence the Progent experts gave us. The fact that you were able to get our e-mail and critical applications back into operation in less than 1 week was incredible. Each staff member I worked with or texted at Progent was totally committed on getting us operational and was working 24/7 to bail us out."

Progent worked hand in hand the customer to quickly get our arms around and assign priority to the critical elements that needed to be restored to make it possible to resume company operations:

  • Active Directory
  • Microsoft Exchange Server
  • MRP System
To get going, Progent followed ransomware event mitigation best practices by halting lateral movement and performing virus removal steps. Progent then started the work of rebuilding Active Directory, the heart of enterprise networks built upon Microsoft Windows technology. Exchange messaging will not work without Active Directory, and the customerís accounting and MRP system utilized SQL Server, which depends on Active Directory services for access to the databases.

In less than 48 hours, Progent was able to recover Active Directory services to its pre-attack state. Progent then charged ahead with setup and hard drive recovery on critical servers. All Microsoft Exchange Server ties and configuration information were intact, which greatly helped the restore of Exchange. Progent was able to collect local OST data files (Outlook Email Off-Line Folder Files) on various desktop computers to recover mail messages. A not too old off-line backup of the customerís accounting/ERP systems made it possible to return these vital applications back online for users. Although a lot of work needed to be completed to recover fully from the Ryuk damage, critical systems were recovered quickly:


"For the most part, the assembly line operation never missed a beat and we produced all customer deliverables."

During the following couple of weeks important milestones in the recovery project were accomplished in close cooperation between Progent consultants and the client:

  • Internal web sites were returned to operation with no loss of information.
  • The MailStore Microsoft Exchange Server containing more than 4 million historical messages was spun up and available for users.
  • CRM/Customer Orders/Invoicing/Accounts Payable/AR/Inventory Control capabilities were fully operational.
  • A new Palo Alto 850 firewall was set up.
  • Most of the desktop computers were being used by staff.

"A huge amount of what was accomplished those first few days is nearly entirely a blur for me, but my team will not soon forget the dedication each and every one of you put in to help get our company back. Iíve trusted Progent for at least 10 years, maybe more, and each time Progent has impressed me and delivered. This situation was a testament to your capabilities."

Conclusion
A probable business-killing catastrophe was averted with top-tier experts, a wide spectrum of subject matter expertise, and close teamwork. Although in post mortem the crypto-ransomware virus penetration detailed here would have been identified and prevented with modern security systems and best practices, staff education, and properly executed security procedures for backup and keeping systems up to date with security patches, the fact remains that state-sponsored cybercriminals from Russia, China and elsewhere are relentless and are an ongoing threat. If you do get hit by a ransomware incursion, remember that Progent's roster of experts has proven experience in ransomware virus defense, removal, and information systems recovery.


"So, to Darrin, Matt, Aaron, Dan, Claude, Jesse, Arnaud, Allen and Chris (along with others that were involved), thanks very much for letting me get rested after we made it over the most critical parts. Everyone did an amazing effort, and if anyone that helped is around the Chicago area, a great meal is on me!"

Download the Crypto-Ransomware Remediation Case Study Datasheet
To read or download a PDF version of this case study, please click:
Progent's Ransomware Incident Recovery Case Study Datasheet. (PDF - 282 KB)

File body_ransomware_recovery_contact_city.asp does not exist



An index of content::

  • 24/7 Amazon cloud integration Integration Companies Amazon hybrid cloud integration Programming Company

  • Small Business Server 2008 Online Troubleshooting
    SBS 2008 On-site Support

    Microsoft Small Business Server (SBS) is an affordable collection of essential servers that offers the foundation for a feature-rich but easy-to-manage information. The integration requirements of the Microsoft .NET components included with Small Business Server calls for a network expert with real-world expertise and extensive knowledge in designing and implementing effective end-to-end information technology systems. Progent's Microsoft-certified consultants have broad experience with the technologies built into Microsoft SBS 2011 and Microsoft SBS 2008. This experience ensures you success in deploying, managing, and servicing IT environments powered by the Microsoft SBS suite of servers and applications.

  • At Home Workforce Beverly Hills Guidance - Call Desk Augmentation Guidance Beverly Hills-Westwood, California, America Work at Home Employees Beverly Hills Consultants - Help Desk Call Center Outsourcing Guidance Beverly Hills
  • Beverly Hills Maze Ransomware Repair Beverly Hills
  • Beverly Hills At Home Workers Cloud Solutions Guidance At Home Workforce Consulting nearby Beverly Hills - Cloud Systems Consulting Beverly Hills-Westwood, CA
  • Beverly Hills At Home Workforce Data Protection Systems Consulting Services Beverly Hills California, United States Telecommuters Beverly Hills Consulting - Backup Technology Consulting Beverly Hills, CA
  • Beverly Hills Beverly Hills At Home Workforce Support Consultants Beverly Hills Offsite Workforce Connectivity Solutions Consulting Experts Beverly Hills-West Hollywood, California
  • Beverly Hills Hermes Ransomware System-Restoration Beverly Hills-Westwood, CA Beverly Hills Sodinokibi Ransomware System-Restoration Beverly Hills, CA

  • Dynamics GP 2013 Support and Setup
    Dynamics GP Great Plains Software Professional

    Progentís Microsoft certified experts provide a range of support services for Dynamics GP. Microsoft Dynamics GP is a Microsoft accounting platform and business management solution built, like all Microsoft financial tools, on the scalable and familiar platform of Windows technology. Dynamics GP 2010, the latest edition of Microsoft financial software in the Microsoft Dynamics GP/Great Plains family, offers an affordable tool for managing and combining accounting, e-commerce, supply chain, manufacturing, project accounting, field service, customer relationships, and human resources. Microsoft Dynamics GP/Great Plains is simple to install and integrate, and with its segmented approach you are able to purchase only the capability you currently need, with the option to expand users and increase capabilities when necessary. Progentís Dynamics GP/Great Plains Software support engineers can show you how to deploy, customize and administer Dynamics GP 2010 and also earlier editions of Microsoft Dynamics GP.

  • Beverly Hills Immediate Ransomware Removal Beverly Hills California Top Quality Beverly Hills MongoLock Ransomware Identification and Repair Beverly Hills California, United States
  • Beverly Hills Ransomware Settlement Consulting Beverly Hills California Emergency Beverly Hills Crypto-Ransomware Settlement Consultants Beverly Hills-Century City
  • Beverly Hills Remote Workforce Security Solutions Consultants Top Rated Work at Home Employees Expertise - Beverly Hills - Network Security Systems Assistance Beverly Hills-Westwood
  • Beverly Hills Telecommuters Consulting Services nearby Beverly Hills - Integration Consultants Beverly Hills Telecommuters Setup Consulting Beverly Hills-Westwood, California

  • Urgent Technology Consulting Services Exchange 2003 Upgrade
    Exchange Server 2003 Upgrade Computer Consultant

    Progent's Microsoft certified consultants can help you design and implement a smooth in-place Exchange Server 2003 upgrade plan that minimizes network disruption, reduces long-term service requirements, and makes your Exchange Server 2003 easy to administer. For complex multiple server or multi-site upgrades, Progent has the experience to complete your project rapidly and affordably. Progent's Microsoft Exchange 2003 help, troubleshooting, and design offerings include expertise with the integration of third-party add-ons to Exchange Server 2003 that are in keeping with your business needs.

  • Beverly Hills Upgrade Beverly Hills, California Maintenance
  • Beverly Hills Upgrading Beverly Hills IT Service Providers
  • Beverly Hills-Bel Air, CA Dynamics GP Beverly Hills Reseller - Reporting Programming and Support Beverly Hills Microsoft Dynamics GP-Software Migration Support

  • Microsoft Certified Online Support Exchange 2007
    Biggest Exchange 2007 Edge Server Remote Consulting

    Progent's Microsoft certified support team can show you how to design and deploy a smooth in-place Microsoft Exchange 2007 migration strategy that minimizes productivity disruption, reduces long-term support demands, and makes your Exchange 2007 Server easy to manage. For complicated multiple server or multi-location migrations, Progent offers the background to finish your project quickly and economically. Progent's Exchange 2007 help, repair, and design services include assistance with the configuration of outside vendor add-ons to Microsoft Exchange Server 2007 and the design of unified messaging implementations based on Microsoft Exchange 2007 Server.

  • Beverly Hills-Bel Air, California Beverly Hills Maze Crypto-Ransomware System-Rebuild Beverly Hills Ryuk Ransomware Infection File-Recovery Case Study

  • Microsoft Office 2000 Computer Consultancy Firm
    Microsoft Computer Network Consulting

    Progentís IT outsourcing services for small businesses include planning Server 2003, Microsoft .NET Server, and BackOffice environments, managing migrations Microsoft Windows XP, Windows 2003 Server, Active Directory, and Exchange Server 2003, Help Desk Call Center, online and on-premises repair, fixing chronic integration issues, and producing a comprehensive security strategy. Progent can show you how to enhance network availability and performance with non-stop technologies, resilient network architecture, and proactive network monitoring. Progent also offers special project help for large-scale migrations and can help with requirements definition, resource identification, bill of materials development, vendor qualification, purchasing coordination, and professional documentation. Progentís IT outsourcing help also features education for office productivity programs such as Office XP.

  • Beverly Hills-Bel Air, California Urgent Beverly Hills Consulting Services for Network Support Firms Beverly Hills Consulting Experts for Network Service Companies in Beverly Hills - Seamless Temporary Support Staff Help
  • Beverly Hills-Century City, California Biggest Remote Workers Consulting Experts nearby Beverly Hills - IP Voice Solutions Consulting and Support Services Beverly Hills-Westwood, California Beverly Hills Work at Home Employees IP Voice Solutions Consulting

  • Check Point Power-1 Firewall Security Services
    Check Point Software Cybersecurity Consultancies

    Progent's Check Point Software firewall consultants can help you design, integrate, and manage firewall environments built around Check Point Next Generation firewalls and Check Point's cloud-based security services. Progent's consultants can also assist you support legacy Check Point firewalls or upgrade efficiently to Check Point's modern firewalls.

  • Beverly Hills-West Hollywood Cisco Professional Services Beverly Hills, CA, United States Cisco Systems Consultant

  • Retrospect for Mac Engineer
    Mozy Consultancy

    Progent can provide affordable remote access to IT engineers skilled in a broad range of utilities and technologies that provide solutions for protecting Windows, Mac, and Linux servers and workstations as well as laptops and handhelds. Progent offers help for all major data protection products such as Acronis, Barracuda Backup, Altaro VM Backup, Backup Exec, BackupAssist Software, HP Data Protector, Double-Take Backup, MozyPro, Retrospect for Macintosh, Apple Time Machine, VMware vSphere Data Protection (VDP), and Oracle Solaris FLARs. Progent can help your company to design, upgrade, or maintain data backup solutions for a range of topologies such as on-premises, edge to datacenter, cloud, or hybrid.

  • Beverly Hills-West Hollywood, CA SharePoint 2013 Consultant Services Microsoft SharePoint Server 2013 On-site Technical Support Beverly Hills-West Hollywood, California
  • Beverly Hills-West Hollywood, California Beverly Hills Locky Ransomware Data-Recovery Beverly Hills Spora Crypto-Ransomware System-Restoration Beverly Hills
  • CISSP Firewall Configuration Beverly Hills-West Hollywood, California Firewall Firewall Network Install Beverly Hills-West Hollywood, California
  • Configuration Debian Linux, Sun Solaris, UNIX Beverly Hills, CA Beverly Hills-West Hollywood, California Urgent Gentoo Linux, Sun Solaris, UNIX Information Technology Consulting
  • Exchange Server 2016 Support Organization Beverly Hills-West Hollywood, CA Exchange Server 2010 Computer Consultancy Companies
  • Full-Time Jobs Microsoft MCSA Consultant Australia MCSE Engineer Subcontractor Sydney, Melbourne, Brisbane, Perth, Adelaide
  • Immediate Specialists Small Business Private Clouds Consultant Services Private Clouds for Small Businesses
  • Immediate Work at Home Employees Consultants in Beverly Hills - Collaboration Solutions Consulting Experts Beverly Hills-West Hollywood Work at Home Employees Assistance in Beverly Hills - Collaboration Solutions Consulting Beverly Hills California
  • MCSE Expert Certified Dynamics GP/Great Plains Integration Support Dynamics GP Power BI Specialist
  • Networking Help Microsoft Windows Microsoft Office 2000 Support Consultants
  • On-site Technical Support ISA 2006 Immediate Technology Consulting Internet Security and Acceleration Server 2006
  • On-site Technical Support Microsoft Exchange 2016 Migration Integration Support Exchange 2016 Mailbox migration
  • Onsite Technical Support Microsoft Exchange 2010 Upgrade 24x7 Exchange 2010 Planning Help and Support
  • Private Cloud Integration Consultant Services Private Cloud Virtual Datacenter Hosting Services
  • Remote Workforce Consulting Experts in Beverly Hills - Endpoint Management Tools Consulting Experts Beverly Hills-West Hollywood 24-Hour At Home Workers Beverly Hills Assistance - Endpoint Management Solutions Consultants Beverly Hills

  • Cisco Firepower 4000 Series Firewalls Specialists
    Firepower Management Center Configuration

    Cisco's Firepower Next Generation Firewalls provide a major performance improvement compared to Cisco's popular ASA 5500-X security appliances and include centralized management and automation of modern security features like application visibility and control (AVC), next-generation intrusion protection with risk prioritization, advanced malware protection (AMP), URL filtering, and sandboxing. Progent's Cisco CCIE firewall experts can help you to design and carry out a smooth upgrade to Cisco Firepower firewalls from Cisco's legacy ASA 5500-X, ASA 5500, or PIX appliances and help you enhance Firepower appliances with Cisco's cloud-based services to create and centrally control IT environments that include local offices, data centers, and cloud resources.

  • Ryuk Ransomware Hot Line Beverly Hills-West Hollywood, California Ransomware Cryptoworm Recovery Beverly Hills-Westwood, California
  • SQL 2012 Networking Company Beverly Hills-Century City Beverly Hills-Bel Air, California Microsoft SQL Server 2016 Remote Troubleshooting
  • Short-Term IT Support Staffing Help Consulting Services Beverly Hills Beverly Hills-Westwood Beverly Hills IT Staff Temps Support Services
  • Small Business 300 Access Point Remote Consulting 24-Hour Specialist Small Business WAP571
  • Top Quality Consultancies BlackBerry BPS Beverly Hills-West Hollywood, California Top Rated BlackBerry Enterprise Server Network Consulting Organization Beverly Hills-West Hollywood, California, USA
  • Top Rated Windows Server 2012 R2 Security Consulting Company Beverly Hills-Westwood Windows Support services Beverly Hills
  • Urgent Beverly Hills Ransomware Ryuk Susceptibility Audit Beverly Hills-Bel Air, California Beverly Hills-Century City Beverly Hills Ransomware Testing
  • Work from Home Employees Consulting Experts near me in Beverly Hills - Conferencing Technology Consulting Services Beverly Hills At Home Workers Video Conferencing Technology Consulting Beverly Hills-Westwood, America

  • Microsoft Retail Management System Consulting
    Dynamics NAV Applications Consultant

    In addition to offering the expertise of Microsoft Dynamics GP (Great Plains) specialists, Progent can provide consultants experienced in Dynamics AX, Dynamics NAV (Navision), Microsoft Dynamics SL, Dynamics RMS, Macola ERP by Exact, MAS 90 ERP, and QuickBooks Pro by Intuit. Progent offers software development, troubleshooting, administration help, upgrade support, and 1-on-1 or group webinar training classes tailored to address your particular needs. Progent's experts also can show you how to integrate and maintain a secure, robust server and communications foundation to support your ERP, MRP and accounting applications.


    © 2002-2021 Progent Corporation. All rights reserved.