Ransomware : Your Crippling IT Nightmare
Ransomware  Recovery ConsultantsCrypto-Ransomware has become a modern cyberplague that presents an enterprise-level threat for businesses of all sizes unprepared for an attack. Different versions of crypto-ransomware like the CryptoLocker, CryptoWall, Bad Rabbit, Syskey and MongoLock cryptoworms have been out in the wild for many years and continue to cause harm. Modern variants of ransomware such as Ryuk, Maze, Sodinokibi, Netwalker, Snatch and Egregor, plus more as yet unnamed malware, not only encrypt on-line critical data but also infiltrate most configured system backup. Files replicated to off-premises disaster recovery sites can also be ransomed. In a poorly designed system, it can render automatic recovery hopeless and basically knocks the datacenter back to square one.

Getting back applications and information following a ransomware outage becomes a race against the clock as the targeted business tries its best to stop the spread, eradicate the crypto-ransomware, and restore enterprise-critical activity. Due to the fact that crypto-ransomware requires time to replicate throughout a targeted network, assaults are frequently sprung during nights and weekends, when successful penetrations are likely to take more time to detect. This compounds the difficulty of rapidly assembling and orchestrating an experienced response team.

Progent provides a variety of help services for securing Boston enterprises from ransomware penetrations. Among these are staff training to become familiar with and not fall victim to phishing exploits, ProSight Active Security Monitoring for endpoint detection and response (EDR) using SentinelOne's AI-based threat defense to identify and suppress day-zero modern malware assaults. Progent also can provide the services of experienced ransomware recovery consultants with the track record and commitment to rebuild a breached environment as quickly as possible.

Progent's Crypto-Ransomware Recovery Support Services
Subsequent to a ransomware penetration, paying the ransom in cryptocurrency does not provide any assurance that merciless criminals will respond with the keys to decipher any of your data. Kaspersky Labs determined that 17% of ransomware victims never recovered their data even after having sent off the ransom, resulting in increased losses. The gamble is also very costly. Ryuk ransoms are often a few hundred thousand dollars. For larger enterprises, the ransom can be in the millions of dollars. The fallback is to piece back together the vital parts of your Information Technology environment. Absent access to complete system backups, this requires a broad complement of IT skills, professional project management, and the capability to work non-stop until the task is complete.

For decades, Progent has made available professional Information Technology services for companies throughout the US and has earned Microsoft's Gold Partnership certification in the Datacenter and Cloud Productivity competencies. Progent's pool of subject matter experts includes consultants who have attained advanced industry certifications in leading technologies such as Microsoft, Cisco, VMware, and major distributions of Linux. Progent's cybersecurity engineers have earned internationally-recognized industry certifications including CISM, CISSP-ISSAP, CRISC, GIAC, and CMMC 2.0. (See Progent's certifications). Progent in addition has experience with accounting and ERP applications. This breadth of expertise provides Progent the ability to efficiently understand important systems and integrate the remaining pieces of your network environment after a crypto-ransomware event and configure them into a functioning system.

Progent's recovery team uses state-of-the-art project management tools to coordinate the complicated restoration process. Progent appreciates the urgency of working quickly and together with a customer's management and IT resources to prioritize tasks and to get essential systems back on line as soon as possible.

Client Case Study: A Successful Ransomware Virus Response
A small business hired Progent after their company was penetrated by Ryuk ransomware. Ryuk is believed to have been created by North Korean government sponsored criminal gangs, possibly adopting technology exposed from America's National Security Agency. Ryuk seeks specific businesses with little ability to sustain operational disruption and is among the most lucrative incarnations of ransomware. Headline victims include Data Resolution, a California-based info warehousing and cloud computing company, and the Chicago Tribune. Progent's customer is a regional manufacturing company headquartered in the Chicago metro area and has around 500 staff members. The Ryuk attack had brought down all business operations and manufacturing capabilities. Most of the client's backups had been directly accessible at the time of the intrusion and were eventually encrypted. The client was taking steps for paying the ransom demand (more than $200K) and wishfully thinking for the best, but ultimately engaged Progent.


"I can't speak enough in regards to the care Progent gave us throughout the most stressful period of (our) businesses life. We would have paid the hackers behind this attack if it wasn't for the confidence the Progent team afforded us. That you were able to get our e-mail and critical servers back on-line in less than five days was incredible. Each expert I got help from or texted at Progent was hell bent on getting my company operational and was working 24/7 to bail us out."

Progent worked together with the client to rapidly understand and prioritize the critical areas that needed to be addressed to make it possible to resume company functions:

  • Windows Active Directory
  • Electronic Mail
  • Accounting and Manufacturing Software
To get going, Progent adhered to Anti-virus penetration response best practices by stopping the spread and clearing up compromised systems. Progent then began the process of rebuilding Microsoft AD, the heart of enterprise networks built upon Microsoft technology. Exchange messaging will not operate without Windows AD, and the businesses' financials and MRP software leveraged Microsoft SQL, which depends on Active Directory for security authorization to the information.

Within two days, Progent was able to rebuild Active Directory to its pre-penetration state. Progent then initiated setup and hard drive recovery of critical servers. All Exchange data and configuration information were usable, which greatly helped the restore of Exchange. Progent was also able to find local OST data files (Outlook Email Offline Folder Files) on team desktop computers to recover mail messages. A not too old off-line backup of the businesses financials/MRP systems made it possible to restore these required services back available to users. Although major work needed to be completed to recover fully from the Ryuk attack, essential services were returned to operations quickly:


"For the most part, the manufacturing operation ran fairly normal throughout and we made all customer sales."

Throughout the following month critical milestones in the restoration project were made in close cooperation between Progent team members and the client:

  • Internal web sites were restored with no loss of data.
  • The MailStore Server with over 4 million archived emails was spun up and accessible to users.
  • CRM/Product Ordering/Invoices/AP/Accounts Receivables (AR)/Inventory capabilities were completely functional.
  • A new Palo Alto 850 firewall was installed and configured.
  • Ninety percent of the desktop computers were fully operational.

"So much of what transpired that first week is mostly a fog for me, but my management will not forget the urgency each of your team accomplished to help get our company back. I've trusted Progent for the past 10 years, possibly more, and every time Progent has outperformed my expectations and delivered as promised. This event was the most impressive ever."

Conclusion
A potential business extinction disaster was dodged due to top-tier experts, a wide spectrum of technical expertise, and close teamwork. Although in post mortem the crypto-ransomware penetration detailed here would have been identified and blocked with modern cyber security technology solutions and recognized best practices, user training, and well thought out incident response procedures for information protection and keeping systems up to date with security patches, the fact remains that state-sponsored criminal cyber gangs from Russia, North Korea and elsewhere are tireless and represent an ongoing threat. If you do fall victim to a crypto-ransomware incursion, feel confident that Progent's roster of professionals has a proven track record in ransomware virus blocking, mitigation, and file disaster recovery.


"So, to Darrin, Matt, Dan, Claude, Jesse, Arnaud, Allen, Tony and Chris (and any others that were involved), I'm grateful for making it so I could get rested after we made it over the initial push. Everyone did an impressive job, and if anyone is in the Chicago area, a great meal is on me!"

Download the Crypto-Ransomware Remediation Case Study Datasheet
To review or download a PDF version of this customer case study, please click:
Progent's Ransomware Virus Recovery Case Study Datasheet. (PDF - 282 KB)

Contact Progent for Ransomware Recovery Services in Boston
For ransomware system restoration consulting services in the Boston area, call Progent at 800-462-8800 or visit Contact Progent.



An index of content::

  • 24-7 Temporary IT Staffing for Network Service Groups Boston, Suffolk County Short-Term IT Support Staffing Services Consulting Specialist
  • 24-Hour Windows Server 2016 Information Technology Integrators New England Windows Server 2012 R2 Computer Network Consultants New England
  • BES Express Engineers Top Rated BES Express Professional
  • Biggest Engineers Security patch management 24/7/365 Professionals Android patch management

  • Data Protection Manager 2012 Consulting Services
    Technical Consultant Microsoft Data Protection Manager 2012

    Progent's Microsoft-certified consultants can provide remote or onsite support to help businesses of any size to design, deploy, administer, and troubleshoot a backup solution built around System Center 2012 Data Protection Manager (SCDPM 2012). Progent's consultants can assist you to upgrade from older versions of Data Protection Manager or from another backup/recovery system, and Progent can integrate your Data Protection Manager deployment for on premises, cloud, or hybrid environments. Progent offers occasional help for fixing particularly challenging issues, or full project management services. Progent can also assist you to design SCDPM 2012 into an enterprise-class disaster recovery plan.

  • BlackBerry Enterprise Server Migration Firm Boston, United States BlackBerry BES Server Small Office Network Consulting Boston Cambridge

  • Exchange 2013 DAG Professionals
    Expert Microsoft Certified Exchange 2013 In-Place Hold Consultants

    Exchange Server 2013 includes significant improvements to the capabilities of its predecessor Exchange Server 2010 and introduces powerful new features as well as a redesigned structure. These improvements favorably impact vital facets of IT like ease of administration, availability, security and compliance, cost of ownership, teamwork, expandability, performance, compatibility, and the user experience. Progent's Microsoft-certified Exchange 2013 consulting professionals can assist your organization to understand the possible advantages of migrating to Exchange 2013, create an efficient validation and deployment plan, and educate your IT team to manage your Exchange Server 2013 solution. Progent can also provide affordable online consulting and management for Microsoft Exchange Server 2013.

  • Boston 24x7 Crypto Remediation Boston, MA Boston 24-Hour CryptoLocker Remediation Consulting Boston
  • 24-7 Boston Avaddon Ransomware Operational-Recovery New England
  • Boston At Home Workforce Call Desk Solutions Assistance Boston Work at Home Employees Assistance near me in Boston - Call Desk Outsourcing Guidance
  • Boston At Home Workforce Endpoint Management Systems Consulting Services Boston, Suffolk County Remote Workforce Consulting near me in Boston - Endpoint Management Tools Consulting and Support Services
  • Boston Expertise for Network Support Companies Boston, MA Specialists for IT Service Firms - Boston - Seamless Short-Term Support Staff Expansion New England
  • Boston Locky Ransomware Recovery Boston, Suffolk County, US Boston Nephilim Crypto-Ransomware Mitigation Boston Cambridge
  • Boston MS Dynamics GP-Great Plains Migration Help Boston Massachusetts Boston MS Dynamics GP Migration Experts Boston Cambridge, U.S.A.
  • Boston Nephilim Ransomware Negotiation Services New England Boston Boston Phobos Ransomware Settlement Negotiation Experts

  • Dynamics GP 2015 Dexterity Engineer
    Dynamics GP 2015 R2 Integration Professional

    Microsoft Dynamics GP 2015 R2 introduces a revamped architecture that enhances cloud readiness, works with popular smart phones and tablets, permits one-time sign-on with Microsoft Azure AD, and strengthens security and compliance. Dynamics 2015 R2 also simplifies management reporting, incorporates nine new Workflows, expands the Web Client, and delivers over 100 enhancements to various applications. Progent's team of Microsoft-certified and Cisco-certified consultants have the broad technical skills and hands-on experience to resolve the critical technical and business challenges involved with deploying and managing Microsoft Dynamics GP 2015 R2 and can help you to perform a smooth migration that will optimize the business value of your investment in this mission-critical platform.

  • Boston Ransomware Hermes Susceptibility Checkup Boston Boston Ransomware NotPetya Susceptibility Checkup New England
  • Boston Ransomware Malware Remediation Boston MongoLock Ransomware Remediation Boston, Suffolk County
  • Boston Remote Workforce Collaboration Technology Consulting Services Boston Massachusetts At Home Workers Consulting Services - Boston - Collaboration Technology Consulting Services Boston Massachusetts
  • Boston 24x7 Boston Sodinokibi Crypto-Ransomware Business-Recovery
  • Boston Ryuk Ransomware Incident Reporting New England, America Boston Phobos Ransomware Forensics
  • Boston Snatch Crypto-Ransomware Rollback Boston Massachusetts Boston Avaddon Crypto-Ransomware Recovery Boston Cambridge
  • Boston, MA Telecommuters Consulting Experts near me in Boston - Endpoint Security Systems Consulting Services Boston Work from Home Employees Cybersecurity Solutions Assistance Boston, United States
  • Boston-Suffolk County On-site and Remote Support Boston IT Technical Support Company
  • CISSP Firewall Network Install Boston, Suffolk County Testing Security Boston, Suffolk County
  • Call Desk for at Home Workforce Online Support Teleworker Solutions Support and Help
  • Cisco Continuous Data Protection Consulting Cisco Voice over IP Specialist
  • Cisco Information Systems Firms Boston, Suffolk County Cisco Support Group Boston, MA
  • Colocation Site Consulting Companies Boston Cambridge 24-Hour Internet Colocation Center Online Support Boston, Suffolk County
  • Consultant SCCM 2012 Windows 2010 Provisioning 24/7 SCCM 2012 Reporting Remote Consulting
  • Contract Microsoft MCDBA Support Boston New England Microsoft MCITP Consulting Home Based Jobs
  • Emergency Boston, Massachusetts Security Consulting Firms Boston, Massachusetts Remote Consulting
  • Emergency Remote Workforce Boston Expertise - Cloud Integration Solutions Expertise Boston Cambridge Boston Telecommuters Cloud Technology Consulting and Support Services
  • Flexential Tampa Internet Data Center Consultant Flexential Data Center Technology Professional
  • Immediate Exchange Network Security Consultants Boston, MA Boston Cambridge Microsoft Exchange 2016 Help

  • Services SentinelOne Phishing Protection
    After Hours SentinelOne Vigilance Respond MDR Integrator Remote Consulting

    Progent is a dealer and consulting firm for SentinelOne's Singularity product family, a subscription-based, cloud-first threat management solution that incorporates machine learning technology and expert services to provide cutting-edge endpoint detection and response (EDR).

  • New England Boston Hermes Ransomware Repair
  • Immediate Router patch management Engineer iPhone patch management Services
  • Immediate Virtual Server Technology Technology Professional Urgent Technical Consultant Server Management
  • MCSE Expert Certified IT Consultants SharePoint InfoPath Forms Services Microsoft SharePoint Server 2010 Technical Support Services
  • Microsoft Certified Partner Engineer Windows Server Essentials Live Migration Professionals Windows Server Essentials and Microsoft 365
  • Microsoft Exchange Upgrade Support Specialist Microsoft Exchange Upgrade
  • Microsoft Office XP Consulting Services Company Small Business Outsourcing Microsoft Office 2000
  • Microsoft SharePoint Server IT Consultants Microsoft SharePoint Server 2007 Integration Support New England
  • Office Entourage for Mac Training Professional Trainer Macintosh
  • Project Design Consultant Microsoft Certified Partner Project Management Consult
  • Ransomware Removal and Data Restore Boston, Suffolk County 24-7 Avaddon Ransomware Hot Line Boston Cambridge
  • Remote Workers Boston Consulting Services - Setup Consulting Services New England Boston Teleworkers Setup Consultants Boston, MA

  • Professionals ransomware data recovery
    Consultants Locky ransomware hot line

    Progent's Ransomware Hot Line provides 24x7 access to a experienced ransomware recovery consultant who can help your business to halt the spread of an active ransomware breach. Call 800-462-8800

  • Remote Workforce Consulting and Support Services near Boston - Conferencing Solutions Consultants Boston Offsite Workforce Voice/Video Conferencing Systems Expertise Boston, MA
  • SQL Server Management Studio Consulting SQL Server Configuration Manager Consultant Services

  • ProSight Enhanced Security Protection Professional
    ProSight Phishing Defense Consulting Services

    Progent's ProSight Enhanced Security Protection services offer ultra-affordable multi-layer security for physical and virtual servers, workstations, smartphones, and Exchange Server. ProSight ESP utilizes adaptive security and modern behavior analysis for continuously monitoring and reacting to cyber threats from all attack vectors. ProSight ESP provides firewall protection, penetration alerts, endpoint management, and web filtering via leading-edge tools incorporated within a single agent accessible from a single console. Progent's data protection and virtualization experts can assist your business to plan and implement a ProSight ESP deployment that addresses your organization's unique needs and that helps you demonstrate compliance with government and industry data protection regulations. Progent will help you specify and configure security policies that ProSight ESP will enforce, and Progent will monitor your IT environment and respond to alerts that require immediate attention. Progent's consultants can also assist you to set up and verify a backup and disaster recovery system like ProSight Data Protection Services so you can recover rapidly from a destructive security attack like ransomware.

  • Setup and Support 9800-80 wireless controller DNA Center IT Consultant

  • Integration Services Cisco SIP and CUBE
    Cisco CUBE and ISR Routers IT Consulting

    Progent's Cisco CCIE-certified SIP infrastructure consultants can assist your business to design, integrate, manage, troubleshoot and upgrade Cisco's SIP connectivity technology and Cisco's CUBE-based SIP trunks and can provide affordable online or on-premises expertise to assist businesses to move smoothly to an advanced unified communications ecosystem that delivers accelerated ROI. Progent's certified Microsoft collaboration experts can assist you to establish interfaces between Cisco's CUBE SBC and Microsoft's VoIP and IP video platforms like Skype for Business and Lync Server for connectivity to a SIP PSTN trunk.

  • Small Office IT Support Microsoft SQL Server 2017 Boston Cambridge SQL Server Migration Firm Boston Massachusetts
  • Technical Support Services Exchange 2007 Microsoft Exchange 2007 Consulting Services

  • SharePoint Technology Consulting Services
    24 Hour SharePoint Server Online Support

    Progent's Microsoft-certified experts can help you rationalize the business case for implementing SharePoint Portal Server 2007, advise you on the appropriate edition of Microsoft SharePoint Server for your application, provide setup and integration services, help you to install MS SQL Server as a back-end DBM, improve your network integrity, integrate your standard and custom application software to work with Microsoft SharePoint Server 2007, design a company-wide security strategy that includes portal solutions, and deliver troubleshooting and Help Desk services.

  • Telecommuters Boston Consulting and Support Services - Connectivity Solutions Consulting Services Boston, MA At Home Workers Boston Consultants - Integration Consulting Services Boston Cambridge

  • MySQL development Consulting
    Upgrade Consultants MySQL database

    Progent can provide cost-effective remote access to an Oracle MySQL administrator or application programmer and can assist organizations of any size to configure and manage MySQL within a reliable network environment that offers high levels of performance, expandability, and protection. Progent also has experience helping businesses port applications from Oracle to MySQL.

  • Telecommuters Consulting near Boston - IP Voice Technology Assistance New England At Home Workers Boston Guidance - IP Voice Systems Consulting and Support Services New England
  • Top Quality Fedora Linux, Sun Solaris, UNIX Support Services Boston Cambridge Slackware Linux, Sun Solaris, UNIX Online Technical Support Boston, Suffolk County

  • Expert Microsoft Certified Skype for Business and SharePoint Specialists
    Skype for Business conference bridges Services

    Microsoft Lync Server 2010 provides IM, Presence, voice/video conferencing, desktop sharing, and both VoIP and public switched telephone network calling. Lync Server 2010 can enhance the capability of Exchange Server, SharePoint and Office or cloud-based Microsoft 365 and simplify administration via integration with Windows AD. Lync 2010 can also cut capital and operational costs by doing away with VoIP hardware and subscription fees, PBX systems, or legacy teleconferencing technology. Progent's certified IM and Presence experts can provide online and onsite support services to assist your company to maintain and troubleshoot your existing Lync 2010 environment or assess the benefits of migrating from Lync Server 2010 to Skype for Business, which is Microsoft's new release of the product family. Progent can also assist you to plan and carry out a smooth Skype for Business migration or a migration to Microsoft Teams.

  • Boston Boston Conti Ransomware System-Rebuild
  • Windows Server 2019 Kubernetes Containers Onsite Technical Support Windows Server 2019 LEDBAT Technical Support
  • Work at Home Employees Boston Assistance - Data Protection Systems Guidance Boston Massachusetts 24-7 Teleworkers Consulting Experts nearby Boston - Backup Technology Consultants Boston

  • © 2002-2024 Progent Corporation. All rights reserved.