Ransomware : Your Crippling IT Catastrophe
Ransomware  Remediation ExpertsRansomware has become a too-frequent cyberplague that poses an extinction-level threat for businesses of all sizes unprepared for an attack. Different iterations of ransomware like the CrySIS, WannaCry, Locky, Syskey and MongoLock cryptoworms have been circulating for a long time and continue to cause damage. Newer variants of ransomware like Ryuk, Maze, Sodinokibi, Netwalker, LockBit and Egregor, plus frequent as yet unnamed malware, not only do encryption of online files but also infiltrate most accessible system protection mechanisms. Information replicated to the cloud can also be rendered useless. In a vulnerable data protection solution, this can render any restore operations impossible and basically knocks the network back to square one.

Restoring services and information after a ransomware intrusion becomes a sprint against the clock as the targeted organization struggles to contain the damage and eradicate the crypto-ransomware and to restore mission-critical operations. Because crypto-ransomware requires time to spread, assaults are usually sprung during weekends and nights, when successful attacks may take longer to recognize. This multiplies the difficulty of quickly assembling and organizing a capable mitigation team.

Progent makes available a range of services for protecting Brooklyn organizations from ransomware penetrations. Among these are user training to help recognize and avoid phishing exploits, ProSight Active Security Monitoring for remote monitoring and management, along with deployment of the latest generation security appliances with artificial intelligence technology to intelligently discover and suppress zero-day cyber threats. Progent in addition can provide the services of expert ransomware recovery professionals with the talent and perseverance to restore a breached network as rapidly as possible.

Progent's Ransomware Recovery Help
Following a crypto-ransomware penetration, sending the ransom demands in Bitcoin cryptocurrency does not ensure that criminal gangs will provide the needed keys to decipher any or all of your information. Kaspersky Labs estimated that 17% of crypto-ransomware victims never restored their information after having paid the ransom, resulting in additional losses. The risk is also very costly. Ryuk ransoms frequently range from fifteen to forty BTC ($120,000 and $400,000). This is significantly higher than the typical ransomware demands, which ZDNET estimated to be in the range of $13,000 for small organizations. The fallback is to piece back together the vital elements of your Information Technology environment. Absent the availability of essential information backups, this calls for a wide range of IT skills, top notch project management, and the capability to work non-stop until the recovery project is done.

For decades, Progent has provided certified expert IT services for companies throughout the US and has earned Microsoft's Gold Partnership certification in the Datacenter and Cloud Productivity competencies. Progent's team of subject matter experts (SMEs) includes consultants who have attained high-level industry certifications in foundation technologies such as Microsoft, Cisco, VMware, and popular distributions of Linux. Progent's cyber security consultants have garnered internationally-renowned certifications including CISA, CISSP-ISSAP, CRISC, and SANS GIAC. (Refer to Progent's certifications). Progent also has experience with financial systems and ERP software solutions. This breadth of experience gives Progent the ability to efficiently determine important systems and consolidate the remaining pieces of your IT system following a crypto-ransomware penetration and assemble them into a functioning system.

Progent's security team has top notch project management tools to coordinate the complex restoration process. Progent knows the importance of acting quickly and in unison with a client's management and IT team members to prioritize tasks and to put the most important applications back online as soon as humanly possible.

Case Study: A Successful Ransomware Virus Response
A small business engaged Progent after their company was brought down by the Ryuk ransomware. Ryuk is thought to have been created by North Korean state criminal gangs, suspected of using technology exposed from Americaís NSA organization. Ryuk targets specific businesses with little or no tolerance for disruption and is one of the most lucrative versions of crypto-ransomware. High publicized targets include Data Resolution, a California-based info warehousing and cloud computing business, and the Chicago Tribune. Progent's client is a small manufacturing business based in the Chicago metro area and has around 500 workers. The Ryuk event had frozen all business operations and manufacturing processes. Most of the client's information backups had been on-line at the start of the intrusion and were encrypted. The client was taking steps for paying the ransom (in excess of $200K) and wishfully thinking for the best, but ultimately brought in Progent.


"I cannot tell you enough about the expertise Progent gave us during the most critical time of (our) companyís life. We most likely would have paid the cyber criminals behind the attack if it wasnít for the confidence the Progent experts afforded us. The fact that you were able to get our messaging and critical applications back online faster than five days was beyond my wildest dreams. Each staff member I talked with or e-mailed at Progent was urgently focused on getting our company operational and was working day and night on our behalf."

Progent worked hand in hand the customer to rapidly identify and prioritize the critical applications that had to be recovered in order to continue business operations:

  • Microsoft Active Directory
  • Exchange Server
  • Financials/MRP
To begin, Progent followed AV/Malware Processes penetration mitigation best practices by halting lateral movement and cleaning up infected systems. Progent then started the steps of rebuilding Microsoft AD, the key technology of enterprise networks built upon Microsoft Windows technology. Exchange email will not operate without AD, and the businessesí financials and MRP system used SQL Server, which depends on Active Directory services for security authorization to the data.

Within two days, Progent was able to recover Active Directory services to its pre-attack state. Progent then initiated reinstallations and hard drive recovery of critical applications. All Exchange Server ties and configuration information were intact, which greatly helped the restore of Exchange. Progent was able to assemble non-encrypted OST files (Outlook Email Off-Line Data Files) on staff desktop computers and laptops to recover email messages. A not too old off-line backup of the client's financials/MRP systems made them able to restore these vital applications back servicing users. Although major work remained to recover totally from the Ryuk event, critical systems were restored quickly:


"For the most part, the production line operation did not miss a beat and we made all customer orders."

Over the following couple of weeks critical milestones in the recovery project were accomplished in close collaboration between Progent team members and the client:

  • Internal web sites were restored with no loss of data.
  • The MailStore Microsoft Exchange Server containing more than four million archived messages was restored to operations and available for users.
  • CRM/Customer Orders/Invoices/Accounts Payable (AP)/AR/Inventory Control capabilities were 100% functional.
  • A new Palo Alto Networks 850 firewall was brought online.
  • Ninety percent of the user PCs were fully operational.

"Much of what transpired those first few days is mostly a blur for me, but I will not forget the care all of your team put in to help get our business back. Iíve trusted Progent for the past ten years, maybe more, and every time Progent has impressed me and delivered. This situation was a stunning achievement."

Conclusion
A potential enterprise-killing disaster was dodged with dedicated professionals, a broad spectrum of technical expertise, and tight collaboration. Although in hindsight the ransomware penetration detailed here would have been identified and prevented with modern security solutions and security best practices, user and IT administrator training, and well thought out security procedures for backup and proper patching controls, the fact is that government-sponsored cyber criminals from Russia, China and elsewhere are relentless and represent an ongoing threat. If you do get hit by a crypto-ransomware incident, remember that Progent's team of experts has proven experience in ransomware virus blocking, removal, and file recovery.


"So, to Darrin, Aaron, Dan, Claude, Jesse, Arnaud, Allen, Tony and Chris (and any others that were involved), thanks very much for allowing me to get some sleep after we made it past the most critical parts. Everyone did an incredible job, and if anyone that helped is visiting the Chicago area, a great meal is on me!"

Download the Ransomware Cleanup Case Study Datasheet
To read or download a PDF version of this case study, click:
Progent's Ransomware Recovery Case Study Datasheet. (PDF - 282 KB)

Contact Progent for Ransomware System Recovery Expertise in Brooklyn
For ransomware cleanup consulting in the Brooklyn metro area, phone Progent at 800-462-8800 or see Contact Progent.



An index of content::

  • 24 Hour Windows 11 Autopilot Consultant Services Support Outsourcing Windows 11 Management
  • 24/7 Anti-Spam Technical Support Services Anti-Virus Reseller
  • 24/7/365 Small Office Online Consulting Small Office Consultancy Firm
  • After Hours Ransomware Data Restore Brooklyn Ryuk Ransomware Hot Line Brooklyn, New York
  • At Home Workers Consulting Services in Brooklyn - Voice/Video Conferencing Technology Guidance Brooklyn After Hours Telecommuters Expertise near Brooklyn - Video Conferencing Systems Consulting Experts Brooklyn
  • At Home Workforce Consulting near me in Brooklyn - Endpoint Management Solutions Consulting Experts Brooklyn, NY Brooklyn Work at Home Employees Endpoint Management Systems Expertise Brooklyn NY
  • BlackBerry Software Design Firm Brooklyn Top Support Organization BlackBerry Exchange
  • Brooklyn 24 Hour Brooklyn Dharma Crypto-Ransomware Settlement Support Brooklyn Ransomware Settlement Consultants Brooklyn NY
  • Brooklyn 24/7 Ransomware Recovery Brooklyn, U.S.A. Brooklyn Crypto-Ransomware Removal Services Brooklyn, NY
  • Brooklyn Consulting Services for Network Service Organizations Brooklyn Consulting Experts for Network Service Companies - Brooklyn - Temporary Support Team Augmentation
  • Brooklyn Conti Ransomware Recovery Brooklyn Brooklyn Ryuk Crypto-Ransomware Blocking Brooklyn, NY, United States
  • Brooklyn Crypto-Ransomware Egregor Vulnerability Testing Brooklyn Crypto-Ransomware WannaCry Vulnerability Review
  • Brooklyn Networking Services SQL Server 2012 Technology Support SQL Server 2012 Brooklyn, NY
  • Brooklyn Remote Troubleshooting Microsoft SharePoint Server 2010 Online Help Microsoft SharePoint Server 2013 Brooklyn, New York, United States
  • Brooklyn Sodinokibi Crypto-Ransomware File-Recovery Brooklyn Brooklyn Egregor Crypto-Ransomware Removal Brooklyn
  • Brooklyn Sodinokibi Ransomware Operational Recovery Brooklyn New York Brooklyn NotPetya Crypto-Ransomware Recovery Brooklyn
  • Brooklyn Staffing Help Brooklyn New York Supplemental IT Staffing Support Services Consulting Specialist Brooklyn

  • Shared Help Desk Ticketing IT Consultant
    Top Quality Support and Setup Virtual Support Desk

    Progent's Computer Help Desk Call Center Outsourcing Services for PC desktop support are designed specifically for small businesses who need fast availability of a Help Desk Service Center with expert phone support and full escalation capability but who must operate within a limited information technology budget. Important components of Progent's Help Desk Outsourcing Support Services include: Help Desk Call Center Support, Optional Remote Access Provisioning, System Evaluation, Expert Prioritization, Virtual Help Desk Support, By-the-Minute Billing, and Help Desk Software Recommendation and Deployment.

  • Brooklyn Work at Home Employees Cloud Integration Solutions Consulting Experts Brooklyn Work from Home Employees Consulting and Support Services in Brooklyn - Cloud Technology Consulting Experts Brooklyn, America
  • Brooklyn Work from Home Employees Cybersecurity Systems Expertise Brooklyn, U.S.A. Offsite Workforce Brooklyn Consultants - Endpoint Security Solutions Assistance Brooklyn NY, America
  • Brooklyn, New York Exchange 2003 Server Computer Network Specialist Microsoft Exchange 2016 Data Recovery Brooklyn, NY
  • CISSP IT Services Brooklyn CISSP Protection
  • Cisco Outsourcing Brooklyn Cisco Technical Support Brooklyn, New York
  • Consultant Red Hat Linux, Sun Solaris, UNIX Brooklyn Red Hat Linux, Sun Solaris, UNIX Consultants Brooklyn, NY
  • Data Recovery Brooklyn Network Security Consultant NYC




  • Les Kent has a 35-year history of effective network integration, corporate administration, sales, and operations. He has shown a knack for creating sophisticated information technology solutions in his roles as as a system designer, application developer, project manager, implementation expert, and problem solver for small companies, new ventures, and global corporations.

  • Indiana Server Setup Award Winning Small Business Computer Consulting Company Colorado
  • MS Dynamics GP Brooklyn Reseller - Customization Expert Brooklyn New York, United States Brooklyn Brooklyn MS Dynamics GP-Great Plains Upgrade Experts

  • Integration Services Microsoft 365 SharePoint Online Integration
    Microsoft 365 Excel Integration Specialists

    Progent can assist your business to evaluate the many subscription options offered with Microsoft 365, formerly called Office 365, and configure your information network with Microsoft 365 in a way that delivers top business value. Progent offers expertise with multi-platform environments that include Windows, macOS, and Linux software. Progent can also assist your business to build and manage hybrid networks that seamlessly combine local and cloud-based products and services.

  • Microsoft Professionals Remote Data Backup and Recovery Service Offsite Data Backup Service Troubleshooting
  • Microsoft and Cisco Certified Expert New York City Tech Support For Small Business New York, New York Network Consultant
  • Open Now Brooklyn Netwalker Crypto-Ransomware Forensics Investigation Brooklyn, NY, US 24x7 Brooklyn Nephilim Ransomware Forensics Investigation Brooklyn, New York
  • Radvision XT5000 Consultancy After Hours Tandberg Telepresence Consult
  • Remote Workers Brooklyn Consulting Services - Data Protection Solutions Assistance Brooklyn Open Now Work at Home Employees Consulting Services near me in Brooklyn - Backup Solutions Expertise

  • Technical Support Services Remote Employees Cloud Integration
    Teleworkers Cloud Integration Information Technology Consulting

    Progent can assist small and medium-size businesses to provision their at-home workers with transparent access to cloud services.

  • Remote Workers Consultants - Brooklyn - Help Desk Call Center Augmentation Assistance Brooklyn New York At Home Workforce Brooklyn Expertise - Help Desk Solutions Consultants Brooklyn
  • Remote Workforce Consulting Services near Brooklyn - Setup Assistance Brooklyn New York, U.S.A. Brooklyn Teleworkers Infrastructure Consulting Experts Brooklyn

  • Juniper SA Series SSL VPN Cybersecurity Tech Services
    Juniper SSL VPN Router Cybersecurity Companies

    SSL VPN makes it possible to establish a secure Internet connection between an enterprise network and virtually any remote computer without the need for pre-installed client software. Progent's Juniper-certified consultants can help you design, manage, and troubleshoot SSL VPN solutions based on Juniper's AS Series of remote access appliances.

  • Small Office Network Computer Consultant Small Business Network Technical Consultant
  • Specialists SCCM Application Management SCCM Application Management Remote Support
  • Telecommuters Brooklyn Consultants - Connectivity Solutions Consulting and Support Services Brooklyn NY, United States Brooklyn Remote Workers Consulting Services nearby Brooklyn - Connectivity Consultants
  • Brooklyn Egregor Crypto-Ransomware Remediation Brooklyn
  • Teleworkers Assistance - Brooklyn - IP Voice Solutions Assistance Brooklyn Remote Workforce IP Voice Solutions Guidance Brooklyn New York

  • MozyPro Services
    VMware VDR Backup Consulting

    Progent offers economical remote support from consultants with expertise in a wide range of utilities and technologies that deliver solutions for backing up Microsoft Windows, Mac, and Linux/UNIX servers and workstations as well as notebooks and handhelds. Progent offers consulting support for all major data protection products including Acronis Backup and Recovery, Barracuda Backup, Altaro VM Backup, Backup Exec, BackupAssist Software, CrashPlan PRO, Double-Take Backup, Mozy, Retrospect for Macintosh, Apple Time Machine, VMware vSphere Data Protection (VDP), and Oracle Solaris FLARs. Progent's consultants can assist you to install, enhance, or maintain backup systems for a range of architectures including local, edge to datacenter, cloud, or hybrid.

  • Teleworkers Brooklyn Assistance - Collaboration Solutions Expertise Brooklyn New York, America Remote Workers Brooklyn Assistance - Collaboration Systems Expertise
  • Windows Server 2012 R2 Computer Service Brooklyn Brooklyn, US Windows 2019 Server Help

  • © 2002-2022 Progent Corporation. All rights reserved.