Crypto-Ransomware : Your Crippling Information Technology Nightmare
Ransomware  Remediation ConsultantsCrypto-Ransomware has become a modern cyber pandemic that presents an enterprise-level danger for businesses of all sizes unprepared for an assault. Different versions of ransomware such as Dharma, CryptoWall, Bad Rabbit, NotPetya and MongoLock cryptoworms have been around for a long time and still inflict havoc. More recent strains of ransomware such as Ryuk, Maze, Sodinokibi, DopplePaymer, LockBit and Egregor, as well as additional unnamed viruses, not only perform encryption of online critical data but also infect any available system restores and backups. Data synchronized to cloud environments can also be encrypted. In a vulnerable environment, this can make any restore operations hopeless and basically knocks the datacenter back to zero.

Retrieving services and information after a crypto-ransomware event becomes a race against time as the targeted organization fights to contain, eradicate the ransomware, and resume mission-critical operations. Since crypto-ransomware takes time to spread across a network, attacks are often launched at night, when attacks in many cases take longer to recognize. This compounds the difficulty of rapidly mobilizing and coordinating a capable response team.

Progent provides a variety of services for protecting Beverly Hills enterprises from ransomware penetrations. Among these are team training to help recognize and avoid phishing exploits, ProSight Active Security Monitoring for endpoint detection and response using SentinelOne's AI-based threat defense to discover and extinguish day-zero modern malware assaults. Progent in addition provides the services of expert ransomware recovery consultants with the skills and commitment to re-deploy a breached network as rapidly as possible.

Progent's Ransomware Restoration Services
Following a crypto-ransomware invasion, paying the ransom in cryptocurrency does not ensure that criminal gangs will provide the needed keys to decrypt any or all of your files. Kaspersky ascertained that 17% of crypto-ransomware victims never restored their data even after having sent off the ransom, resulting in more losses. The gamble is also expensive. Ryuk ransoms are often several hundred thousand dollars. For larger enterprises, the ransom can reach millions. The alternative is to re-install the key elements of your Information Technology environment. Without access to complete information backups, this requires a broad complement of IT skills, well-coordinated project management, and the capability to work non-stop until the job is over.

For decades, Progent has made available certified expert Information Technology services for businesses across the United States and has earned Microsoft's Gold Partnership certification in the Datacenter and Cloud Productivity competencies. Progent's group of subject matter experts includes professionals who have earned top certifications in leading technologies including Microsoft, Cisco, VMware, and major distributions of Linux. Progent's security experts have earned internationally-recognized industry certifications including CISA, CISSP-ISSAP, CRISC, SANS GIAC, and CMMC 2.0. (Refer to Progent's certifications). Progent in addition has experience with financial systems and ERP application software. This breadth of expertise affords Progent the capability to rapidly identify critical systems and re-organize the surviving parts of your Information Technology environment following a ransomware attack and rebuild them into an operational network.

Progent's security team of experts deploys powerful project management tools to orchestrate the complex restoration process. Progent knows the importance of working swiftly and in concert with a client's management and IT staff to assign priority to tasks and to get critical services back on line as fast as humanly possible.

Case Study: A Successful Ransomware Intrusion Restoration
A client contacted Progent after their network was penetrated by the Ryuk ransomware. Ryuk is generally considered to have been launched by North Korean state sponsored hackers, suspected of adopting techniques exposed from the U.S. National Security Agency. Ryuk attacks specific companies with limited tolerance for operational disruption and is among the most lucrative versions of ransomware. Well Known organizations include Data Resolution, a California-based data warehousing and cloud computing firm, and the Chicago Tribune. Progent's customer is a small manufacturer headquartered in Chicago with about 500 employees. The Ryuk penetration had shut down all company operations and manufacturing capabilities. The majority of the client's information backups had been directly accessible at the start of the attack and were damaged. The client was taking steps for paying the ransom (more than $200K) and hoping for good luck, but ultimately reached out to Progent.


"I can't thank you enough about the expertise Progent provided us throughout the most fearful period of (our) company's survival. We most likely would have paid the cyber criminals if not for the confidence the Progent experts afforded us. The fact that you were able to get our e-mail and important servers back quicker than seven days was something I thought impossible. Every single staff member I spoke to or communicated with at Progent was amazingly focused on getting our system up and was working 24 by 7 on our behalf."

Progent worked together with the customer to rapidly identify and assign priority to the key elements that had to be restored to make it possible to restart business operations:

  • Windows Active Directory
  • E-Mail
  • Accounting/MRP
To get going, Progent adhered to AV/Malware Processes event mitigation best practices by stopping lateral movement and performing virus removal steps. Progent then started the process of restoring Active Directory, the key technology of enterprise environments built on Microsoft Windows technology. Microsoft Exchange messaging will not function without Windows AD, and the client's financials and MRP applications used Microsoft SQL, which depends on Active Directory for access to the data.

Within 2 days, Progent was able to re-build Active Directory to its pre-intrusion state. Progent then charged ahead with reinstallations and hard drive recovery of the most important servers. All Exchange Server ties and configuration information were usable, which accelerated the rebuild of Exchange. Progent was able to collect local OST data files (Microsoft Outlook Off-Line Data Files) on staff workstations and laptops in order to recover email information. A recent offline backup of the customer's manufacturing software made it possible to return these required applications back available to users. Although significant work needed to be completed to recover totally from the Ryuk virus, core systems were recovered rapidly:


"For the most part, the production operation survived unscathed and we did not miss any customer sales."

Over the next few weeks key milestones in the restoration project were made through close cooperation between Progent team members and the customer:

  • In-house web applications were brought back up without losing any information.
  • The MailStore Exchange Server containing more than four million historical messages was spun up and accessible to users.
  • CRM/Orders/Invoices/Accounts Payable (AP)/Accounts Receivables (AR)/Inventory Control functions were completely operational.
  • A new Palo Alto Networks 850 firewall was deployed.
  • Most of the desktops and laptops were functioning as before the incident.

"So much of what occurred those first few days is mostly a fog for me, but my management will not soon forget the care all of you put in to give us our business back. I have utilized Progent for at least 10 years, maybe more, and each time Progent has outperformed my expectations and delivered as promised. This situation was the most impressive ever."

Conclusion
A likely enterprise-killing catastrophe was dodged due to hard-working professionals, a broad range of technical expertise, and close teamwork. Although in post mortem the crypto-ransomware penetration detailed here could have been identified and blocked with up-to-date cyber security technology and recognized best practices, user education, and well designed incident response procedures for information backup and proper patching controls, the fact is that state-sponsored criminal cyber gangs from China, North Korea and elsewhere are relentless and are not going away. If you do fall victim to a crypto-ransomware penetration, remember that Progent's team of experts has extensive experience in crypto-ransomware virus blocking, remediation, and data recovery.


"So, to Darrin, Aaron, Dan, Claude, Jesse, Arnaud, Allen, Tony and Chris (and any others who were helping), thank you for letting me get some sleep after we got through the first week. Everyone did an fabulous job, and if any of your team is around the Chicago area, dinner is on me!"

Download the Ransomware Removal Case Study Datasheet
To read or download a PDF version of this case study, please click:
Progent's Crypto-Ransomware Incident Recovery Case Study Datasheet. (PDF - 282 KB)

Contact Progent for Ransomware Recovery Consulting Services in Beverly Hills
For ransomware recovery services in the Beverly Hills metro area, call Progent at 800-462-8800 or see Contact Progent.



An index of content::

  • 24-7 Computer Setup Online Visio Training Live Online Office Word Train
  • At Home Workforce Consulting and Support Services near me in Beverly Hills - Backup Technology Consulting Experts Beverly Hills-Westwood, California Beverly Hills Remote Workers Data Protection Systems Consulting and Support Services Beverly Hills, CA
  • Beverly Hills At Home Workforce Setup Consulting Beverly Hills-Bel Air, California 24/7 Teleworkers Expertise in Beverly Hills - Integration Expertise Beverly Hills, CA
  • Beverly Hills Crypto-Ransomware Forensics Investigation Beverly Hills 24x7 Beverly Hills Hermes Ransomware Forensics Investigation Beverly Hills, CA
  • Beverly Hills Dynamics GP-Software Upgrade Consultant Beverly Hills-Westwood, CA Beverly Hills Dynamics GP-Software Migration Support Services
  • Beverly Hills IT Staffing Services Beverly Hills-Westwood Beverly Hills Supplemetary IT Staffing Services Beverly Hills

  • Specialist Ryuk ransomware data recovery
    MongoLock ransomware recovery Specialists

    Progent's Ransomware Hot Line provides 24x7 access to a experienced ransomware recovery consultant who can help your business to contain the progress of an active ransomware breach. Call 800-462-8800

  • Beverly Hills Lockbit Crypto-Ransomware Remediation Beverly Hills California Top Quality Beverly Hills Ryuk Crypto-Ransomware Virus Restoration Beverly Hills-Westwood, CA
  • Beverly Hills Netwalker Crypto-Ransomware Remediation Beverly Hills-Westwood, California Beverly Hills Ryuk Online Ransomware Repair Consultants Beverly Hills-Westwood, California

  • Top Ranked Technology Consulting Services MSP360 Desktop Backup
    Help and Support MSP360 Managed Backup

    Progent's data protection experts can assist your company to create, implement and debug a backup solution based on MSP360 technology. MSP360 enables file or image-based backup/restore for VMs and physical computers, supports all popular public clouds, and permits businesses to build a data protection solution with a low Recovery Time Objective and a granular Recovery Point Objective (RPO). With ProSight Data Protection Services 360 Backup, Progent can provide end-to-end monitoring and remote management of your backup environment to protect against data loss caused by human mistakes, system errors, malicious users, and external assaults like ransomware.

  • Beverly Hills Ransomware Infection Evaluation Beverly Hills, CA Beverly Hills Ransomware Malware Preparedness Evaluation Beverly Hills-Century City, CA
  • Beverly Hills Remote Workforce Management Systems Consulting and Support Services Beverly Hills-Century City, CA Beverly Hills California Beverly Hills Telecommuters Management Solutions Assistance
  • Beverly Hills Ryuk Crypto-Ransomware Settlement Negotiation Guidancen Beverly Hills-West Hollywood Beverly Hills Conti Ransomware Negotiation Consulting Beverly Hills-Bel Air

  • Sarbane Oxley Compliance Services
    Consulting Enterprise Windows 2019

    For large organizations, Progent can supplement in-house IT staffs by providing extensive experience in supporting key Microsoft and Cisco technologies. Progent's certified professionals can provide Enterprise Active Directory help, Exchange Server 2010 support, SharePoint Server experience, and Microsoft SQL Server help. For the nationwide or worldwide businesses with branches, Progent can perform as a transparent local supplement of enterprise network management. Progent's enterprise consulting services include company-wide security, remote branch office support, system design, Sarbox conformance, project planning, and top-level service for multiple location office environments based on Enterprise Windows 2000. Progent can provide on-site engineers and technicians to assist with a campus relocation or branch move, or a network designer to help with building or utilizing an Internet Data Center or co-location site.

  • Beverly Hills Technical Services Beverly Hills-Westwood Small Office IT Outsourcing

  • Flexential Tampa Data Center Engineers
    24-7 Consultants Flexential Tampa Data Center

    Progent makes use of the Flexential Tampa colocation center primarily to deliver private cloud hosting services. Progent maintains a team of IT consultants located in the vicinity of Tampa, and Progent can also provide remote expertise from Progent's nationwide team of Microsoft-certified experts, Cisco-certified CCIE network infrastructure engineers, ISSIP-CISSP-certified security experts, Hyper-V and VMware specialists, and veteran DRBC planning consultants. Progent can also help your business to plan and implement a move to the Flexential facility by providing services such as planning system configuration, specifying hardware components, system setup and validation, troubleshooting, setting up online management, and educating your network support team.

  • Beverly Hills Telecommuters Call Desk Solutions Consulting Beverly Hills At Home Workforce Beverly Hills Assistance - Help Desk Outsourcing Consulting and Support Services Beverly Hills

  • Exchange 2010 Migration Consultant
    24/7/365 Microsoft Exchange Server 2010 Migration Consultant

    Progent's Microsoft-certified network engineers can assist you to determine the value of Exchange Server 2010 for your company and can assist your IT staff to plan and implement an efficient migration to Exchange Server 2010 from Exchange 2003 or Microsoft Exchange Server 2007 that will provide quick return on investment by increasing your workers' efficiency, lowering the cost of equipment and service, simplifying administration, and consolidating your key communications technologies.

  • Beverly Hills-Century City, California WannaCry Ransomware Hot Line Conti Ransomware Hot Line Beverly Hills-Century City
  • Beverly Hills-West Hollywood, CA Consultants for Beverly Hills Network Service Companies Consulting Experts for Computer Support Companies nearby Beverly Hills - Transparent Short-Term Staff Augmentation Beverly Hills

  • Top Online Office PowerPoint Classes
    Microsoft Desktop Apps Instruction Technology Consulting Company

    Progent's webinars offer small businesses the cost savings, simplicity, and versatility of web-based seminars and the proven training techniques of seasoned teachers who use advanced technology to reproduce live, interactive classes. Progent offers webinar training for key desktop applications including elements of Microsoft Office such as Office Excel, Word, PowerPoint, and Outlook: Microsoft Dynamics accounting and management reporting software including Microsoft Dynamics GP; as well as additional popular desktop applications like Photoshop, Adobe Acrobat Writer, and Crystal Reports.

  • Beverly Hills-Westwood Remote Workforce Beverly Hills Consulting Experts - Solutions Expertise After Hours Remote Workforce Beverly Hills Consulting - Integration Consulting and Support Services Beverly Hills-Bel Air
  • Beverly Hills-Westwood, CA Beverly Hills DopplePaymer Crypto-Ransomware Rollback Top Rated Beverly Hills Nephilim Ransomware Mitigation Beverly Hills-Bel Air, CA, America
  • Beverly Hills-Century City Beverly Hills Avaddon Crypto-Ransomware Operational-Recovery
  • BlackBerry BPS Network Outsource Beverly Hills, CA Information Technology Outsourcing BlackBerry Exchange Beverly Hills-Westwood, California
  • Cisco Consolidation Beverly Hills, CA 24-7 Cisco Technical Support Organization Beverly Hills-Bel Air, CA

  • ProSight Virtual Hosting Consulting Services
    Private Cloud Solutions Consultant Services

    Progent's ProSight Virtual Hosting offers advanced virtual server architecture, a state-of-the-art data center facility, and the technical support services of Progent's Microsoft-certified engineering group to provide small and midsize businesses with a complete IT outsourcing alternative that enhances network availability and security, reduces management distraction, and saves money. With Private Cloud Hosting, a small or midsize business can have all of its operating system platforms and critical business application servers hosted in a safe and fault tolerant facility on a high-performance, non-stop virtual machine set up and supported by Progent's network support experts.

  • Cisco and Microsoft Beverly Hills Remote Support Outsourced IT Management Services Beverly Hills

  • Dynamics GP Great Plains Accounting IT Consultants
    Largest Dynamics GP Accounting Support and Help

    Progent's Microsoft certified experts provide a range of support services for Microsoft Dynamics GP/Great Plains. Microsoft Dynamics GP/Great Plains is a Microsoft financial platform and business management tool built, like all Microsoft accounting tools, on the scalable and familiar platform of Microsoft Windows technology. Microsoft Dynamics GP 2010, the latest edition of Microsoft financial software in the Dynamics GP/Great Plains line, provides an affordable tool for managing and combining finances, e-commerce, supply chain, manufacturing, project accounting, field service, CRM, and human resources. Microsoft Dynamics GP is easy to deploy and configure, and with its modular approach you are able to license only the functions you currently require, with the ability to expand users and enlarge capabilities when necessary. Progent's Microsoft Dynamics GP/Great Plains Software support engineers can show you how to install, configure and manage Microsoft Dynamics GP/Great Plains 2010 and also earlier versions of Dynamics GP/Great Plains.

  • Emergency Auditor Security Urgent CISSP Security Consultancies Beverly Hills
  • Emergency Excel for Mac PivotTables Consultant Outlook for Mac Remote Troubleshooting
  • Exchange Implementation Services Manage Microsoft Exchange Server 2007 Beverly Hills
  • Fedora Linux, Sun Solaris, UNIX Onsite Technical Support Beverly Hills-West Hollywood Ubuntu Linux, Solaris, UNIX Technical Consultant Beverly Hills-West Hollywood, CA

  • Consultant Services Linux with Windows
    Windows, Linux, UNIX, Solaris Consultant

    If your company network combines Linux-based products platforms with Windows, Progent can assist you to integrate your computers into a cohesive network that allows all your OS platforms to coexist for easy administration, seamless dataflow, high availability, superior throughput, and strong security. Progent's Linux and MS Windows coexistence assistance services feature IT infrastructure integration and service, support for Microsoft Windows services for UNIX (SFU), online server monitoring and management, online network help and repair, on-site technical support, and Help Desk Call Center outsourcing.

  • Beverly Hills Conti Crypto-Ransomware System-Restore Beverly Hills-West Hollywood, CA
  • Fortinet 4000 Series Firewalls Support and Help Best Onsite Technical Support Fortinet Firewall Migration

  • Small Business WAP571 Integration Services
    CCNP Expert Certified Small Business WAP150 Support Outsourcing

    Progent's Cisco-certified Wi-Fi technology consulting experts can assist you to configure, administer, and troubleshoot Cisco Small Business Wireless APs.

  • Urgent Beverly Hills Egregor Ransomware System-Rebuild Beverly Hills-Westwood, U.S.A.
  • Immediate Remote Workers Consulting Experts near Beverly Hills - VoIP Technology Consultants Beverly Hills At Home Workers Beverly Hills Assistance - IP Voice Solutions Consultants Beverly Hills, CA

  • Top Rated VMware Site Recovery Manager Migration Consultants
    Specialists VMware vCenter Orchestrator

    VMware's market leading Site Recovery Manager is an extension to VMware vCenter that allows you to define, automate and test a consistent runbook for restoring applications and services rapidly following an outage. Site Recovery Manager provides centrally managed and automated recovery, application mobility, and non-disruptive site relocation, failback and re-protect. Site Recovery Manager also enables non-disruptive testing for disaster recovery, updates and fixes and can generate audit reports to confirm complete service restoration, validate SLAs and demonstrate disaster recovery compliance. Progent offers the support of a VCDX certified VMware SRM consulting expert to help you to plan, configure, test and manage a DR system based on VMware Site Recovery Manager.

  • Information Technology Installation Service Windows Server 2012 R2 Beverly Hills, CA Computer Network Companies Windows Server 2016 Beverly Hills-Westwood
  • ProSight Email Denial of Service Protection Services ProSight Email Content Filtering Engineers
  • Professionals Instant Messaging Technical Support Services Microsoft Presence Awareness
  • Beverly Hills Ransomware File-Recovery Beverly Hills
  • Ransomware Recovery Support Services Beverly Hills, United States 24x7x365 Beverly Hills Crypto Remediation Consulting Beverly Hills-Century City
  • Remote Workforce Beverly Hills Consulting Experts - Voice/Video Conferencing Systems Expertise Beverly Hills-Bel Air Beverly Hills Remote Workers Video Conferencing Systems Consulting Experts Beverly Hills-West Hollywood, California
  • SQL Server 2019 Small Business Network Consultant Beverly Hills-Westwood, CA Beverly Hills-Bel Air, California SQL Server 2019 Small Office Network Consulting
  • SharePoint Support Services Beverly Hills-Century City SharePoint Server 2019 Specialists Beverly Hills-West Hollywood, California

  • CIO Online Consulting
    Remote Support Services Part-Time CIO

    Progent can provide small businesses with an IT management expert who can function as a part-time Chief Information Officer. This part-time Chief Information Officer can offer strategic direction to help you integrate appropriate technology to improve business processes so they align more closely with your corporate objectives. Your company can develop and install a well thought out IT strategy without incurring the expense of a full-time Chief Information Officer.

  • Small Office Small Business Computer Consulting Services Small Office Outsourced IT Services

  • Windows Server 2019 with Linux Online Support Services
    Windows Server 2019 Storage Replica Integration Services

    Progent's Microsoft-certified Windows Server 2019 experts can assist your company to design and implement a cost-effective migration to Windows Server 2019 using existing system architecture or a new cloud-hosted or hybrid model. Windows Server 2019 offers significant improvements in capacity, performance, manageability, virtualization, security and compliance, hybrid local/cloud deployments, resilience, and container support.

  • Telecommuters Beverly Hills Consultants - Collaboration Solutions Expertise Beverly Hills California, U.S.A. Beverly Hills-Bel Air, CA Remote Workforce Beverly Hills Consulting - Collaboration Systems Guidance
  • Telecommuters Expertise - Beverly Hills - Network Security Solutions Expertise Beverly Hills Beverly Hills-West Hollywood, CA At Home Workers Beverly Hills Consulting Experts - Endpoint Security Solutions Consulting Experts
  • Work from Home Employees Consulting and Support Services - Beverly Hills - Cloud Integration Systems Assistance Beverly Hills-Westwood, United States Urgent Remote Workers Consulting and Support Services in Beverly Hills - Cloud Integration Technology Consulting and Support Services Beverly Hills-Westwood, California

  • © 2002-2024 Progent Corporation. All rights reserved.