Ransomware Response Consulting Experts

Overview of Progent's Ransomware Settlement Negotiation Consulting in Brooklyn
Progent has experience negotiating ransomware settlements with adversaries. Reaching an acceptable settlement is a complex activity that calls for a combination of field experience, IT skills and business acumen. It also requires close co-operation with the cyber-extortion target's IT team and the insurance carrier, if any. Because the top priority of the ransomware target is operational continuity, it is critical to establish recovery teams that work effectively, in parallel, and with intimate collaboration. Progent offers the scope of IT skills and the depth of experts to supplement your IT support team and recover your network rapidly and economically.

Services available from Progent's ransomware negotiation team include:

• Determining the kind of ransomware used in the attack
• Identifying and contacting the hacker
• Evaluating the likelihood of recovery
• Verifying the TA's decryption tool
• Deciding on an acceptable settlement amount with the ransomware victim and the insurance carrier
• Establishing a settlement and timeline with the TA
• Confirming adherence to anti-money laundering regulations
• Carrying out the crypto-currency disbursement to the hacker
• Acquiring, reviewing, and operating the hacker's decryption mechanism
• If necessary, contacting the TA for technical help with the decryptor tool

• Quarantining infected endpoints to prevent further progress of the attack
• Making digital copies of every breached server and endpoint and data store to allow forensics in parallel with cleanup
• Adding anti-virus agents to all clean endpoints
• Salvaging data from air-gapped restores or uncompromised machines
• Creating a clean recovery environment
• Mapping and reconnecting drives to match precisely their pre-encryption state

Paying Exfiltration Ransoms
In addition to demanding payment for a decryption tool, current variants of ransomware such as Ryuk, Sodinokibi, DopplePaymer, and Nephilim often attempt to steal (or "exfiltrate") files. Hackers are then able to demand an additional payment in exchange for not divulging this information on the dark web. Sadly, there exists no way to be certain that stolen data have been completely erased by the hacker. Actually, in many instances the hacker has little control about the disposition of the data. Settling an exfiltration ransom does not eliminate the necessity of engaging the guidance of privacy lawyers, conducting an investigation into which data were stolen, and performing the required notifications to affected entities. In almost all cases, paying an exfiltration ransom is not recommended.

Progent's Background
Progent has provided online and onsite IT services throughout the U.S. for more than two decades and has been awarded Microsoft's Partner designation in the Datacenter and Cloud Productivity practice areas. Progent's roster of subject matter experts includes consultants who have been awarded high-level certifications in core technologies including Cisco infrastructure, VMware, and major Linux distros. Progent's data security consultants have earned internationally recognized certifications such as CISA, CISSP, CRISC, and CMMC 2.0. (See Progent's certifications). Progent also offers guidance in financial and Enterprise Resource Planning applications. This scope of expertise gives Progent the ability to salvage and consolidate the surviving parts of your information system after a ransomware assault and rebuild them quickly into a viable network. Progent has worked with leading insurance providers like Chubb to assist organizations clean up after ransomware assaults.

Contact Progent about Ransomware Settlement Negotiation Expertise in Brooklyn
To contact with Progent about ransomware settlement guidance in Brooklyn, phone Progent at 800-462-8800 or go to Contact Progent.