Ransomware : Your Crippling IT Catastrophe
Crypto-Ransomware  Remediation ExpertsCrypto-Ransomware has become an escalating cyberplague that presents an enterprise-level danger for businesses of all sizes unprepared for an assault. Versions of ransomware such as CryptoLocker, WannaCry, Locky, SamSam and MongoLock cryptoworms have been around for years and still cause havoc. More recent variants of ransomware such as Ryuk, Maze, Sodinokibi, Netwalker, LockBit and Nephilim, as well as frequent as yet unnamed malware, not only encrypt online data files but also infect most configured system restores and backups. Files replicated to the cloud can also be rendered useless. In a poorly designed system, it can make automatic restore operations useless and basically knocks the datacenter back to square one.

Recovering programs and information following a ransomware event becomes a race against the clock as the victim fights to contain and clear the virus and to restore mission-critical operations. Because ransomware takes time to replicate, penetrations are often launched during nights and weekends, when successful attacks typically take longer to notice. This compounds the difficulty of promptly mobilizing and coordinating an experienced mitigation team.

Progent makes available an assortment of support services for protecting Miami Beach organizations from ransomware penetrations. These include user training to help recognize and not fall victim to phishing exploits, ProSight Active Security Monitoring (ASM) for remote monitoring and management, plus installation of the latest generation security solutions with AI technology to rapidly discover and suppress new cyber attacks. Progent in addition can provide the services of veteran crypto-ransomware recovery engineers with the skills and perseverance to reconstruct a breached environment as urgently as possible.

Progent's Crypto-Ransomware Recovery Services
Soon after a crypto-ransomware event, even paying the ransom demands in Bitcoin cryptocurrency does not guarantee that distant criminals will respond with the codes to decipher any of your files. Kaspersky determined that 17% of ransomware victims never recovered their data after having sent off the ransom, resulting in increased losses. The gamble is also very costly. Ryuk ransoms often range from 15-40 BTC ($120,000 and $400,000). This is significantly above the average ransomware demands, which ZDNET estimated to be in the range of $13,000 for small businesses. The other path is to piece back together the key components of your IT environment. Absent access to essential data backups, this calls for a broad range of skill sets, professional team management, and the willingness to work non-stop until the recovery project is complete.

For twenty years, Progent has made available expert IT services for companies across the U.S. and has achieved Microsoft's Gold Partnership certification status in the Datacenter and Cloud Productivity competencies. Progent's group of subject matter experts (SMEs) includes engineers who have attained high-level industry certifications in leading technologies such as Microsoft, Cisco, VMware, and major distributions of Linux. Progent's cybersecurity engineers have earned internationally-renowned certifications including CISM, CISSP-ISSAP, CRISC, and SANS GIAC. (See Progent's certifications). Progent in addition has experience in financial systems and ERP software solutions. This breadth of expertise provides Progent the ability to efficiently understand critical systems and integrate the surviving parts of your Information Technology environment following a ransomware penetration and configure them into a functioning network.

Progent's security team has powerful project management tools to coordinate the sophisticated recovery process. Progent appreciates the importance of acting quickly and together with a client's management and IT resources to assign priority to tasks and to get key services back online as soon as possible.

Customer Case Study: A Successful Ransomware Intrusion Restoration
A business escalated to Progent after their company was crashed by the Ryuk ransomware. Ryuk is generally considered to have been created by North Korean state sponsored cybercriminals, suspected of using techniques exposed from the United States National Security Agency. Ryuk seeks specific organizations with little tolerance for operational disruption and is among the most lucrative incarnations of crypto-ransomware. Major victims include Data Resolution, a California-based data warehousing and cloud computing company, and the Chicago Tribune. Progent's client is a single-location manufacturer headquartered in the Chicago metro area and has about 500 employees. The Ryuk attack had brought down all essential operations and manufacturing processes. Most of the client's system backups had been on-line at the beginning of the intrusion and were destroyed. The client was pursuing financing for paying the ransom demand (more than two hundred thousand dollars) and wishfully thinking for good luck, but in the end utilized Progent.


"I can't say enough about the expertise Progent provided us during the most fearful time of (our) businesses existence. We had little choice but to pay the cyber criminals behind the attack except for the confidence the Progent team afforded us. That you could get our messaging and critical servers back faster than 1 week was something I thought impossible. Every single expert I got help from or texted at Progent was absolutely committed on getting our system up and was working 24/7 to bail us out."

Progent worked together with the customer to quickly determine and assign priority to the key applications that had to be addressed to make it possible to restart company operations:

  • Windows Active Directory
  • Electronic Messaging
  • Financials/MRP
To begin, Progent adhered to AV/Malware Processes event mitigation best practices by halting the spread and cleaning systems of viruses. Progent then initiated the work of recovering Microsoft AD, the core of enterprise environments built on Microsoft Windows Server technology. Microsoft Exchange email will not work without AD, and the client's financials and MRP applications leveraged Microsoft SQL Server, which needs Active Directory services for access to the data.

Within 2 days, Progent was able to restore Active Directory to its pre-intrusion state. Progent then accomplished reinstallations and storage recovery of mission critical applications. All Exchange data and configuration information were usable, which accelerated the restore of Exchange. Progent was able to collect non-encrypted OST files (Outlook Offline Folder Files) on team desktop computers in order to recover email data. A recent offline backup of the client's manufacturing systems made them able to restore these essential applications back available to users. Although a large amount of work was left to recover completely from the Ryuk virus, core systems were recovered rapidly:


"For the most part, the manufacturing operation showed little impact and we made all customer orders."

During the next couple of weeks important milestones in the recovery process were made through tight cooperation between Progent team members and the client:

  • Internal web sites were brought back up with no loss of information.
  • The MailStore Exchange Server containing more than four million archived messages was spun up and available for users.
  • CRM/Customer Orders/Invoicing/Accounts Payable (AP)/AR/Inventory functions were 100% recovered.
  • A new Palo Alto 850 firewall was set up and programmed.
  • Nearly all of the desktops and laptops were operational.

"So much of what occurred in the early hours is mostly a haze for me, but we will not forget the care each and every one of you accomplished to give us our business back. I have entrusted Progent for the past ten years, maybe more, and every time I needed help Progent has outperformed my expectations and delivered. This situation was a Herculean accomplishment."

Conclusion
A possible business catastrophe was dodged through the efforts of top-tier experts, a wide range of IT skills, and tight collaboration. Although in analyzing the event afterwards the crypto-ransomware attack detailed here could have been identified and blocked with current security technology and NIST Cybersecurity Framework best practices, user and IT administrator training, and properly executed incident response procedures for backup and proper patching controls, the fact is that state-sponsored hackers from Russia, North Korea and elsewhere are tireless and are an ongoing threat. If you do fall victim to a crypto-ransomware incident, feel confident that Progent's team of experts has a proven track record in ransomware virus defense, cleanup, and file restoration.


"So, to Darrin, Matt, Aaron, Claude, Jesse, Arnaud, Allen, Tony and Chris (along with others that were contributing), I'm grateful for making it so I could get some sleep after we got over the initial push. Everyone did an impressive job, and if any of your team is around the Chicago area, dinner is my treat!"

Download the Crypto-Ransomware Removal Case Study Datasheet
To read or download a PDF version of this case study, please click:
Progent's Crypto-Ransomware Recovery Case Study Datasheet. (PDF - 282 KB)

Contact Progent for Ransomware System Restoration Consulting Services in Miami Beach
For ransomware system restoration consulting services in the Miami Beach area, phone Progent at 800-462-8800 or visit Contact Progent.



An index of content::

  • Anti-Virus Information Technology Consulting Antispam Consultants
  • At Home Workforce Consulting and Support Services near Miami Beach - Cloud Solutions Consulting Services Miami Beach, FL Emergency At Home Workers Miami Beach Consulting and Support Services - Cloud Technology Consulting Services Miami Beach
  • CISSP Technology Consulting Services Miami Beach Florida, US Security Security Audits
  • Catalyst 4500 Switch Integration Services Catalyst 6500 Switch Network Engineer
  • Catalyst 9105w Access Point On-site Technical Support Catalyst Wi-Fi 6 AP Security Network Consultant
  • Cisco Certified Expert Miami Beach, Florida Networking Company Miami Beach Repair
  • Cisco and Microsoft Wireless Email Small Business Computer Consulting Company Top Quality Microsoft Exchange Migration Small Business IT Outsourcing Services

  • Microsoft Certified Dynamics GP Great Plains Accounting Technology Consulting
    Microsoft Dynamics GP ERP Online Troubleshooting

    Microsoft Dynamics GP/Great Plains can help you grow and control your company more efficiently by offering deep availability of strategic data and a fast return on investment. Dynamics GP/Great Plains offers important productivity benefits such as its ability to expand the presence of your company, handle your financials, computerize financial processes, standardize processes throughout your business, refine inventory control, enhance order accuracy, grow revenue and shorten turnaround time, and increase cash flow. Progent can help you configure and manage a reliable, safe server and network infrastructure to support Great Plains, and can offer expert Microsoft Dynamics GP consultants to help you reap the full benefits of your Microsoft Dynamics GP business management system.

  • Configuration Debian Linux, Solaris, UNIX Miami Beach CentOS Linux, Solaris, UNIX Computer Engineer Miami Beach
  • Consulting Services for Miami Beach Computer Support Firms Miami Beach Expertise for IT Support Organizations nearby Miami Beach - Transparent Short-Term Support Team Expansion Miami Beach, FL

  • After Hours Consultant Wireless Security
    Wireless Security Consultant Services

    Progent offers consulting for security analysis products including Microsoft Baseline Security Analyzer for performing a variety of programmed network testing scans to identify potential security problems. Progent has broad experience with network analysis tools and can show you how to understand audit reports and respond effectively. Progent can help you build security into your company operations, configure scanning applications, define and deploy a secure system environment, and recommend policies to optimize the safety of your IT system. Progent's security engineers are available to show you how to set up a firewall, design secure remote connectivity to email and data, and integrate virtual private network. Progent's accredited security experts can also validate the protection of web software and can conduct extensive security evaluations of enterprise-wide security to determine your company's compliance with recognized international security standards including HIPAA, NIST, and ISO 17799.

  • Dynamics GP-Software Vender in Miami Beach - SQL Server Consultant Miami Beach Florida Miami Beach MS Dynamics GP-Great Plains Miami Beach Gold Partner - SQL Server Consulting

  • Windows Mobile Consultant Services
    Wireless EMail Engineer

    Progent's consultants offer experience in a variety of disciplines relevant to mobile connectivity such as system topology, Activesync, wireless protection, mobile e-mail, Windows Mobile, Research in Motion Blackberry, and mobile software development. Progent's Microsoft and Cisco certified professionals can save your business work and money by applying their wireless experience to help you select and configure mobile access solutions that make sense for your company. Progent can also tune your network architecture so that mobile data devices work more reliably.

  • Miami Beach Avaddon Ransomware Rollback
  • Exchange Server 2016 Server Consultants Miami Beach Florida, US Small Office Computer Consulting Exchange 2003 Server
  • Largest Configure Miami Beach Miami Beach Setup Service
  • Miami Beach Best Troubleshooting Microsoft SharePoint Server 2013 Urgent Microsoft SharePoint 2010 Support Services Miami Beach
  • Miami Beach Cisco Small Business Network Consulting Firms Server Setup Cisco Miami Beach, Florida, US

  • Exchange 2019 DLP Consultant Services
    24/7 Consulting Exchange 2019 Upgrade

    Progent can assist your organization in any phase of your migration to Microsoft Exchange 2019 including configuring Windows Server 2019 as a host for Exchange; planning high availability architecture for an on-premises, cloud-based or hybrid environment; moving mailboxes; designing and configuring Hyper-V; configuring hardware load balancing; building DAG groups with MCDB caching; setting up Skype for Business 2019 for voicemail services; setting up collaboration with SharePoint; preparing firewalls; integration with Microsoft 365; and setting up Outlook clients.

  • Miami Beach Crypto-Ransomware Recovery Miami Beach, FL Miami Beach Emergency Crypto Remediation Support Services Miami Beach
  • Miami Beach FL Miami Beach Short Term IT Staffing Support Supplemetary IT Staffing for IT Support Organizations

  • Technical Support Services SharePoint Server
    24/7/365 SharePoint Server 2013 Configuration

    Progent's Microsoft-authorized experts can show you how to rationalize the economic justification for implementing Microsoft SharePoint 2007, consult with you on the most sensible version of SharePoint for your application, offer setup and integration expertise, help you to set up MS SQL Server as a back-end DBM, optimize your network infrastructure, integrate your standard and custom application software to work with Microsoft SharePoint Server 2007, develop a company-wide security strategy that incorporates portal technology, and deliver maintenance and Help Desk services.

  • Miami Beach Florida Work at Home Employees Consulting and Support Services - Miami Beach - Endpoint Management Solutions Consulting Services Telecommuters Miami Beach Consulting Experts - Management Systems Consulting Services Miami Beach
  • Miami Beach Locky Crypto-Ransomware Business Recovery Miami Beach FL Miami Beach Sodinokibi Ransomware System-Rebuild Miami Beach FL
  • Miami Beach Locky Crypto-Ransomware Negotiation Guidance Miami Beach Miami Beach Nephilim Crypto-Ransomware Negotiation Consultants Miami Beach Florida
  • Miami Beach Offsite Workforce Consultants near Miami Beach - Conferencing Technology Guidance Miami Beach Telecommuters Video Conferencing Solutions Consulting and Support Services Miami Beach FL, US
  • Miami Beach Ransomware Readiness Miami Beach FL, United States Miami Beach Ransomware Locky Susceptibility Review Miami Beach, FL
  • Miami Beach Remote Workers Cybersecurity Systems Expertise Miami Beach Miami Beach Offsite Workforce Security Solutions Guidance Miami Beach Florida

  • Microsoft Windows Server 2008 Cluster Configuration
    Remote Windows 2008 Cluster Server Professional

    The clustering feature set incorporated into the high-end versions of MS Windows Server 2008 has been dramatically re-engineered to streamline the deployment, setup, and maintenance of server clusters that offer improved levels of network availability, protection, efficiency, and versatility. New or enhanced features include cluster verification, easier setup and deployment, improved cluster management, new cluster infrastructure for increased availability, hardened protection and quorum models, fewer failure points, more disk and memory capacity, and enhancements for multi-site clusters. Progent's consultants can assist your company evaluate the business benefits of failover clusters, design and implement an installation, train your IT staff to manage your failover clusters, provide ongoing consulting and support services, and produce and test a business continuity procedure.

  • Miami Beach Ryuk Ransomware Protection Miami Beach, FL Miami Beach FL Miami Beach Crypto-Ransomware Operational Restoration
  • Miami Beach Ryuk Ransomware Virus System-Rebuild Case Study Miami Beach, Florida Miami Beach Miami Beach DopplePaymer Crypto-Ransomware Data-Recovery
  • Miami Beach Sodinokibi Crypto-Ransomware Forensics 24 Hour Miami Beach Hermes Crypto-Ransomware Forensics Analysis Miami Beach, FL
  • Miami Beach, Florida Miami Beach At Home Workers Setup Expertise Miami Beach Telecommuters Infrastructure Consulting Miami Beach FL
  • Miami Beach, Florida Miami Beach At Home Workforce Collaboration Solutions Consulting Remote Workforce Consulting Experts in Miami Beach - Collaboration Systems Consulting Miami Beach

  • Professionals Call Desk Management Services
    Call Center Outsourcing Services Technical Support Services

    Progent's Microsoft and Cisco certified Consultants offer three service programs to help medium-size and large organizations develop a cost-effective and successful in-house Network Support Helpdesk. Progent's consulting services include ROI analysis, process analysis and enhancement, management reporting, education of internal personnel, and documentation of processes. Progent's Software Evaluation and Deployment Services help companies analyze the various top level Help Desk application programs on the market and determine which products may be excessively expensive, miss key capabilities, or align poorly with your company's business goals. Progent also provides short-term staffing for businesses who need to reinforce their internal Help Desk team for special projects or to substitute for absent or incapacitated workers.

  • Network Security Technology Professional Wireless Security Specialist
  • ProSight Remote Monitoring and Reporting Specialist ProSight Windows Desktop Management IT Consultant
  • Ransomware Removal and Data Recovery Miami Beach Ryuk Ransomware Hot Line Miami Beach, FL

  • Microsoft Dynamics 365 Commerce Application Consultant
    Microsoft Dynamics NAV Applications Consultants

    Besides offering access to Microsoft Dynamics GP (Great Plains) consultants, Progent has consultants experienced in Microsoft Dynamics AX ERP Software, Dynamics NAV (Navision), Dynamics SL (Solomon), Dynamics RMS, Macola ERP, MAS 90 ERP, and QuickBooks Pro. Progent can provide programming, troubleshooting, administration help, migration support, and one-on-one or group online training tailored to meet your particular requirements. Progent's consultants also can help you build and maintain a protected, reliable network infrastructure to support your ERP, MRP and accounting applications.

  • Remote Multi-factor Authentication Setup and Support Duo Multi-factor Authentication Computer Consulting

  • ProSight Phishing Defense Engineers
    Urgent ProSight ASM Endpoint Protection Consulting Services

    Progent's ProSight Active Security Monitoring (ASM) incorporates next generation behavior analysis tools from SentinelOne to guard endpoints and servers and VMs against recognized as well as zero-day ransomware variants like Ryuk, Maze, Sodinokibi, Netwalker, Snatch or Nephilim.

  • Remote Workforce Consulting and Support Services near me in Miami Beach - Connectivity Consultants Miami Beach, U.S.A. Immediate Miami Beach At Home Workers Set up Assistance Miami Beach Florida
  • SQL 2012 Networking Consultancy Miami Beach, Florida Microsoft SQL 2008 Network Consulting Experts Miami Beach, FL, America
  • Small Business Support Services Small Office Online Technical Support

  • Microsoft Windows 7 Evaluation Information Technology Consulting
    Windows 7 Training On-site Technical Support

    Progent's Microsoft certified engineers can assist your company to assess Microsoft Windows 7 to verify application compatibility and to determine its speed and reliability operating with your applications. Progent can also show you how to evaluate the likely business benefits of adopting Microsoft Windows 7. If Windows 7 makes sense for your business, Progent can assist your IT organization to plan and carry out a smooth deployment of Microsoft Windows 7 from a an older version of Windows.

  • Teleworkers Expertise near me in Miami Beach - Help Desk Augmentation Consultants Miami Beach, FL Miami Beach Remote Workers Call Desk Outsourcing Assistance
  • Miami Beach MongoLock Crypto-Ransomware Mitigation Miami Beach FL
  • Top Quality Lync Server 2013 high availability Specialists Lync Server 2013 Front End Pool Consulting Services
  • Top Ranked Repair Installation BlackBerry BES Server Miami Beach, FL BlackBerry Wireless Systems Consultant Miami Beach
  • Top Rated Teleworkers Consulting and Support Services - Miami Beach - Backup/Recovery Technology Consulting and Support Services Miami Beach Florida Biggest Work from Home Employees Miami Beach Consulting and Support Services - Backup Systems Consulting Experts Miami Beach
  • UNIX, Windows Consultants Windows and UNIX Engineer
  • Miami Beach Ransomware System-Restore Miami Beach FL
  • Windows Server 2012 Small Business Network Support Miami Beach Florida Software Consulting Firm Windows 2008 Server Miami Beach, FL, USA
  • Work from Home Employees Consulting and Support Services in Miami Beach - VoIP Technology Consultants Miami Beach Florida Teleworkers Miami Beach Consulting and Support Services - IP Voice Solutions Expertise Miami Beach
  • Miami Beach Lockbit Ransomware Repair Miami Beach

  • © 2002-2022 Progent Corporation. All rights reserved.