Ransomware Filtering and Recovery Solutions Colorado Springs
Crypto-Ransomware Remediation: An Example
Crypto-Ransomware : Your Feared IT Disaster
Crypto-Ransomware has become a too-frequent cyber pandemic that presents an enterprise-level danger for organizations vulnerable to an assault. Multiple generations of ransomware such as Reveton, WannaCry, Locky, Syskey and MongoLock cryptoworms have been replicating for years and continue to cause destruction. More recent variants of ransomware like Ryuk, Maze, Sodinokibi, DopplePaymer, Snatch and Nephilim, plus daily as yet unnamed malware, not only perform encryption of on-line data but also infiltrate all configured system protection. Information synched to the cloud can also be encrypted. In a vulnerable system, this can make automatic recovery impossible and basically knocks the entire system back to zero.
Recovering applications and information following a crypto-ransomware outage becomes a race against time as the targeted organization struggles to stop the spread, eradicate the ransomware, and resume business-critical operations. Due to the fact that ransomware requires time to move laterally across a targeted network, attacks are often sprung at night, when penetrations in many cases take longer to discover. This multiplies the difficulty of quickly mobilizing and coordinating a capable response team.
Progent provides an assortment of support services for securing Colorado Springs organizations from crypto-ransomware penetrations. Among these are staff training to help identify and not fall victim to phishing exploits, ProSight Active Security Monitoring for endpoint detection and response (EDR) utilizing SentinelOne's AI-based cyberthreat defense to detect and extinguish day-zero modern malware attacks. Progent also can provide the services of expert crypto-ransomware recovery professionals with the talent and commitment to restore a breached environment as rapidly as possible.
Progent's Crypto-Ransomware Restoration Support Services
Soon after a crypto-ransomware attack, paying the ransom in cryptocurrency does not provide any assurance that merciless criminals will provide the needed keys to unencrypt any of your files. Kaspersky Labs ascertained that 17% of ransomware victims never restored their files after having sent off the ransom, resulting in more losses. The risk is also costly. Ryuk ransoms are typically a few hundred thousand dollars. For larger organizations, the ransom demand can reach millions of dollars. The other path is to setup from scratch the mission-critical components of your IT environment. Without the availability of full system backups, this calls for a wide complement of skills, top notch team management, and the ability to work non-stop until the recovery project is complete.
For twenty years, Progent has made available professional Information Technology services for businesses across the United States and has earned Microsoft's Partnership certification status in the Datacenter and Cloud Productivity competencies. Progent's pool of subject matter experts (SMEs) includes professionals who have been awarded top industry certifications in leading technologies including Microsoft, Cisco, VMware, and major distributions of Linux. Progent's cybersecurity consultants have earned internationally-renowned certifications including CISA, CISSP, CRISC, GIAC, and CMMC 2.0. (Visit Progent's certifications). Progent in addition has experience in accounting and ERP software solutions. This breadth of experience gives Progent the capability to knowledgably understand necessary systems and integrate the surviving pieces of your network system following a ransomware attack and assemble them into an operational system.
Progent's security group deploys top notch project management tools to coordinate the complicated recovery process. Progent appreciates the importance of working quickly and together with a customer's management and IT staff to assign priority to tasks and to put critical systems back on line as soon as possible.
Client Story: A Successful Crypto-Ransomware Virus Restoration
A customer sought out Progent after their network was taken over by the Ryuk crypto-ransomware. Ryuk is thought to have been created by North Korean state cybercriminals, suspected of using approaches leaked from America's National Security Agency. Ryuk seeks specific businesses with little or no ability to sustain operational disruption and is among the most lucrative incarnations of ransomware. Major organizations include Data Resolution, a California-based information warehousing and cloud computing company, and the Chicago Tribune. Progent's client is a small manufacturing business located in Chicago and has about 500 workers. The Ryuk event had frozen all business operations and manufacturing capabilities. The majority of the client's data protection had been on-line at the beginning of the attack and were eventually encrypted. The client was taking steps for paying the ransom (more than two hundred thousand dollars) and hoping for good luck, but ultimately made the decision to use Progent.
Progent worked with the client to rapidly assess and assign priority to the critical applications that had to be addressed in order to continue departmental functions:
- Active Directory
- Exchange Server
- Financials/MRP
Within 48 hours, Progent was able to restore Active Directory services to its pre-penetration state. Progent then helped perform setup and storage recovery on the most important systems. All Exchange Server ties and attributes were intact, which facilitated the rebuild of Exchange. Progent was able to locate non-encrypted OST data files (Outlook Email Offline Folder Files) on team desktop computers to recover mail information. A not too old offline backup of the client's accounting software made them able to restore these vital programs back on-line. Although major work remained to recover totally from the Ryuk virus, critical services were returned to operations quickly:
Over the next few weeks important milestones in the restoration process were completed through close cooperation between Progent consultants and the client:
- In-house web sites were returned to operation with no loss of data.
- The MailStore Exchange Server exceeding 4 million archived messages was restored to operations and accessible to users.
- CRM/Customer Orders/Invoicing/Accounts Payable/AR/Inventory Control functions were 100 percent recovered.
- A new Palo Alto Networks 850 security appliance was brought on-line.
- Nearly all of the user desktops were functioning as before the incident.
Conclusion
A likely enterprise-killing disaster was averted through the efforts of dedicated professionals, a broad range of subject matter expertise, and tight collaboration. Although in hindsight the ransomware virus incident detailed here could have been identified and blocked with advanced cyber security solutions and ISO/IEC 27001 best practices, user and IT administrator education, and well thought out security procedures for backup and applying software patches, the reality remains that state-sponsored cyber criminals from Russia, China and elsewhere are tireless and are an ongoing threat. If you do fall victim to a ransomware attack, feel confident that Progent's roster of experts has proven experience in ransomware virus blocking, remediation, and data recovery.
Download the Ransomware Remediation Case Study Datasheet
To read or download a PDF version of this customer case study, please click:
Progent's Ryuk Virus Recovery Case Study Datasheet. (PDF - 282 KB)
Contact Progent for Ransomware System Recovery Services in Colorado Springs
For ransomware system recovery services in the Colorado Springs area, call Progent at
An index of content::
Infor SyteLine CloudSuite Performance Tuning Engineer
SyteLine Consultancy
Infor CloudSuite Industrial, previously known as SyteLine, is an ERP solution that embodies more than a quarter century of experience assisting manufacturing and distribution companies to simplify complex supply chains and streamline critical processes in order to get products to market quickly and meet customer schedules consistently. Progent can provide the skills of an ERP consultant with over two decades of background working with the Infor CloudSuite Industrial/SyteLine platform. Progent offers online or onsite consulting that spans from as-needed advice to end-to-end solution design and project management. Sample services available from Progent for CloudSuite Industrial/SyteLine include implementation, upgrades, process improvement, customization, CPQ, web site integration, debugging, data conversion, Microsoft 365 integration, disaster recovery planning, and database administration.
Nortel Networks Certified Support Specialist (NNCSS) Network Consultants
MCSE Networking Organization
Progent offers customers the services of engineers who have been awarded some of the IT industry's most prestigious certifications. Progent thinks that clients have the right to be sure that their computer service professionals have formal training plus broad practical field experience so that Progent's customers can engage Progent's support with trust. Often, vendor credentials like the Cisco Certified Internetwork Experts (CCIE) brings priority for substantially superior vendor assistance than is offered to non-certified consultants, allowing Progent to deliver clients a higher level of computer support. In addition, recognized certifications such as CISSP or ISSEP for network security can aid enterprise customers to demonstrate compliance with regulatory requirements by engaging the services of recognized IT professionals.
Hybrid Microsoft 365 Exchange integration Integration Services
Online Technical Support Microsoft 365 Gmail migration
Microsoft allows you to create seamless hybrid environments that integrate Microsoft 365 and on-premises Exchange systems. This permits you to have certain Exchange mailboxes located at your corporate datacenter or private cloud and other mailboxes hosted by Microsoft 365. Progent's Microsoft-certified Exchange consultants can help you with any phase of planning, implementing and troubleshooting your hybrid Microsoft 365 Exchange network. Progent's Exchange specialists can provide as-needed support to help you resolve stubborn technical bottlenecks and also offer comprehensive project management outsourcing or co-sourcing to make sure your hybrid Microsoft 365 Exchange initiative is completed on schedule and within budget.
Microsoft Certified Expert Exchange 2013 Data Loss Prevention Technical Support
Technical Consultant Exchange 2013 Upgrade
Exchange 2013 incorporates significant improvements to the capabilities of its predecessor Microsoft Exchange 2010 and introduces important innovations as well as a redesigned architecture. These enhancements affect key IT areas such as manageability, high availability (HA), compliance, operational costs, collaboration, extensibility, throughput, compatibility, and the user experience. Progent's certified Exchange Server 2013 consulting experts can assist your organization to evaluate the potential business benefits of upgrading to Microsoft Exchange Server 2013, design an efficient validation and rollout plan, and educate your IT team to maintain your Exchange 2013 solution. Progent also offers ongoing remote support and management for Exchange Server 2013.
Microsoft Exchange Consultant
Exchange 2007 Server Services
Progent's Microsoft certified support team can show you how to design and implement a smooth in-place Exchange Server 2007 upgrade plan that minimizes productivity downtime, reduces ongoing service demands, and makes your Microsoft Exchange 2007 Server easy to manage. For complicated multiple server or multi-site migrations, Progent offers the experience to finish your move quickly and economically. Progent's Exchange 2007 support, troubleshooting, and design offerings include expertise with the integration of third-party add-ons to Microsoft Exchange 2007 Server and the design of unified messaging solutions based on Microsoft Exchange Server 2007.
Immediate Meraki AP IT Consultant
CCIE Certified 5500 Wireless Controller Network Consultants
Progent's Cisco-certified Wi-Fi technology consulting experts can assist you to configure, administer, and debug Cisco wireless products such as Aironet and Meraki 802.11ac wireless access points plus Cisco's Wireless Network Controllers.
Benefits for Home Based Network Consultants Remote Support Jobs
Remote Support Jobs Benefits for Home Based Network Consultant
Our compensation structure is built on revenue sharing, so similar to working as an independent contractor, your income is directly driven by your work effort. Some Progent support staff focus on lifestyle issues and elect to work at an easy pace, using our self-determined calendar to follow individual enthusiasms like hiking, motorcycle racing, skiing, surfing, vacations, or sharing private time with relatives and friends. Other consultants take advantage of the opportunity to earn major dollars via hard work and extended hours. Progent completely encourages either end of the spectrum plus everything in the middle.
Consulting Fortinet FortiOps
Fortinet Firewall Web Filtering Online Troubleshooting
Fortinet FortiGate next-generation firewalls (NGFWs) are industry leaders in delivering top throughput for SSL inspection. Progent's Fortinet firewall experts can help your business to deploy your Fortinet security appliances to protect your digital resources at the network edge, within the data center core, at branches, and in the cloud.
CIO Remote Support Services
CIO Online Technical Support
Progent offers the temporary services of a veteran CIO to offer strategic direction to help you pick and support network technology to match your current situation and that can serve as a firm basis for your future growth. Progent's temporary CIO consulting services offer financial leverage to companies who want to optimize the benefits from their IT expenditures but who are without the budget or unwilling to take on another high-level manager to their head count. Because Progent is vendor-agnostic, with a large staff of engineers certified to support all major OS platforms and connectivity technologies plus a broad range and business applications, Progent is in a unique situation to offer objective advice along with advanced technical help for creating IT systems that match the particular needs of your organization.
Small Offices Technical Services
Small Office Security Consulting Companies
Progent provides the help of Microsoft and Cisco-Premier IT support professionals to offer customers economical alternatives to help businesses maximize the benefits of Microsoft and Cisco technology. For networks that range from remote offices to nationwide enterprises, Progent's expert engineers can show you how to enhance your network's e-mail infrastructure, protection, availability, performance, and IT administration.
Excel Power View Reports
Microsoft 365 Excel Migration Consultants
Progent's Microsoft-certified Office Excel and Office 365 Excel consultants offer a broad range of online support services to help you to design, program, test, install, manage, and troubleshoot applications powered by any version of Microsoft Excel, including Excel 2016 and Office 365 Excel. Progent can assist you to migrate your legacy Excel applications to the newest versions of Excel, support Excel on Apple iOS-powered iPhones and iPads and Android smartphones and tablets, and fix compatibility issues between different versions of Office Excel. Progent can provide on-demand support to organizations who need a fast solution to a specific issue related to Office Excel and Progent can also provide full project management support for migrating or developing line-of-business application software based on Excel. Progent's affordable webinar training for Excel can be customized to meet the needs of individuals or teams.
Largest Wireless Case Study
Immediate Case Study Wireless
Progent delivered a wireless integration solution that enabled a school to increase productivity and avoid the recurring expense of a dedicated wireline connection. Progent proposed a Proxim Tsunami high-speed wireless bridge. The low-cost building-to-building Proxim bridge is intended for interfacing separate locations up to 2.5 miles apart and can reach even longer distances. This wireless alternative provided better performance and reliability than simply amplifying the 802.11b wireless connection, and because it utilizes the 5.8Ghz band it offered protection against local interference.
Exchange Server 2016 Upgrade Planning Help and Support
Exchange Server 2016 Upgrade Planning Professionals
Progent can help your business in all phases of your migration to Exchange 2016 including planning HA architecture for an on-premises, cloud-based or hybrid deployment; licensing requirements for Exchange Server and Windows Server 2012 R2 or later; moving mailboxes; Hyper-V virtualization strategy; determining storage requirements for your virtual machines, mailbox databases and logs; configuring HLB for fault-tolerant CAS services; designing, building and testing Exchange Servers and Windows Servers and Database Availability Groups (DAGs); integration with SharePoint Server or SharePoint Online; preparing your firewall; creating SSL certs; performing client remediation with Office desktop or Microsoft 365; and setting up Outlook on the web (formerly Outlook Web App).
24-Hour Infor SyteLine CloudSuite Personalization Services
Infor SyteLine CloudSuite Accounts Payable Technology Professional
Infor CloudSuite Industrial, previously known as SyteLine, is an ERP platform that incorporates over a quarter century of experience helping manufacturing and service companies to simplify complex supply chains and streamline critical business processes in order to get products to market fast and meet customer commitments dependably. Progent offers the skills of an ERP consultant with over 20 years of experience with the Infor CloudSuite Industrial/SyteLine product family. Progent can provide online or on-premises services that spans from as-needed advice to solution design and project management. Sample services available from Progent for CloudSuite Industrial/SyteLine include implementation, migration, business analysis, application development, Configure/Price/ Quote, web site integration, technical support, ETL, Amazon AWS integration, training, and DBA services.
24-Hour WatchGuard Firebox M590 Firewall Cybersecurity Tech Services
Security Tech Services WatchGuard Firebox M470 Firewall
Progent offers support expertise for WatchGuard Firewall/VPN security gateways including the WatchGuard Firebox and XTM series of Firewalls and the Firebox SSL Core VPN Gateway. Progent's WatchGuard professionals can help you select, configure, and maintain a WatchGuard Firewall/VPN product that fits your network security needs and budget. Progent can help you to manage outdated WatchGuard firewalls or upgrade efficiently to current WatchGuard firewalls.
Catalyst Switch IOS Integration
Catalyst 3850 Switch Integration
With Cisco Catalyst switches for small and mid-size businesses, Cisco allows organizations to realize all the benefits of bringing smart traffic control into their IT infrastructures. Cisco's Catalyst switch technology makes it possible to enable features to make your IT network highly available to accommodate time-critical needs, expandable to facilitate future growth, secure enough to protect restricted data, and designed for prioritizing and managing traffic flows to streamline system performance. Progent's CCIE certified consultants can help you pick out and deploy Catalyst switches that make sense for your company. Also, Progent's CISM certified security consultants can help you create a strategic protection plan and set up Cisco switches so they powerfully support your security strategy. Cisco Catalyst switching products that Progent supports include Cisco's Catalyst 2960 switches, Catalyst 3560 switches, Cisco Catalyst 4948 switches, and Catalyst 6500 switches.
Catalyst 9130AX Access Point Professional
Catalyst Wireless AP Troubleshooting
Progent's Cisco Catalyst Wi-Fi 6 AP consultants offer economical remote and onsite support for Catalyst Wi-Fi 6 wireless access points.
Consultancy Email Link Protection
ProSight Outbound Email Filtering Engineer
Progent's ProSight Email Guard solution uses the technology of leading information security vendors to deliver web-based control and world-class protection for your inbound and outbound email. The hybrid architecture of Progent's Email Guard combines cloud-based filtering with a local security gateway appliance to provide complete defense against spam, viruses, Dos Attacks, Directory Harvest Attacks (DHAs), and other email-borne threats. The cloud filter serves as a preliminary barricade and keeps the vast majority of threats from making it to your network firewall. This decreases your vulnerability to inbound threats and saves system bandwidth and storage. Email Guard's on-premises gateway appliance adds a further layer of inspection for inbound email. For outbound email, the on-premises gateway offers anti-virus and anti-spam filtering, DLP, and email encryption. The onsite gateway can also help Microsoft Exchange Server to monitor and safeguard internal email traffic that stays inside your corporate firewall.
Consulting password management system
Consulting ProSight network infrastructure documentation management
ProSight IT Asset Management is a cloud-based IT documentation management service that makes it easy to create, maintain, retrieve and protect information related to your network infrastructure, procedures, applications, and services. You can quickly find passwords or IP addresses and be alerted about upcoming expirations of SSL certificates or domains. By updating and organizing your IT documentation, you can save as much as half of time wasted looking for vital information about your IT network. ProSight IT Asset Management includes a centralized repository for storing and sharing all documents required for managing your network infrastructure such as standard operating procedures and self-service instructions. ProSight IT Asset Management also supports advanced automation for collecting and relating IT information. Whether you're making improvements, doing regular maintenance, or reacting to an emergency, ProSight IT Asset Management gets you the knowledge you need as soon as you need it.
MySQL Clustering Consultant Services
MySQL WorkBench Programming Firm
Progent can provide cost-effective remote access to an Oracle MySQL DBA or application programmer and can help organizations of all sizes to configure and manage MySQL in a robust network infrastructure that offers high levels of performance, expandability, and security. Progent also has experience helping businesses port databases from Oracle to MySQL.
Microsoft Certified Partner Consulting Windows and UNIX
Windows and Solaris Troubleshooting
Progent can help your business to design and implement a smooth transition from a UNIX-powered information environment to a network powered by MS Windows and capable of supporting Microsoft's powerful office productivity products, commercial applications, and software development platforms. Progent's UNIX, Windows and Cisco consultants and software development specialists can help you guard your data and reduce business disruption by designing an efficient transition strategy that preserves your current assets in UNIX application and technology. UNIX-to-Windows migration consulting services offered by Progent include analysis of current infrastructure, transition planning and validation, Microsoft Exchange migration services, data and application transition, and server and mass storage transition and consolidation.
CISA Certified Intrusion Detection
Urgent CISA Certified Cybersecurity Audit Specialists
The CISA credential is a globally recognized qualification that signifies expertise in network security auditing. Accredited by the American National Standards Institute (ANSI), the CISA accreditation requires that consultants pass an extensive test administered by the ISACA international professional association. Progent can provide the services of a CISA-Certified Cybersecurity audit professional trained to assist businesses in the fields of IS audit services, information technology enforcement, systems and infrastructure lifecycle, IT service delivery, protection of data resources, and business continuity preparedness.
Professionals Security Architecture
ISSAP Certified Cybersecurity Consult
Progent's ISSAP Certified security experts, or Information Systems Security Architecture Professionals, are experts who have earned ISSAP status as a result of rigorous testing and extensive experience with network security design. ISSAP security experts have comprehensive understanding of access control systems and methodologies, telecommunications and network infrastructure protection, cryptography, needs evaluation, business continuity and disaster recovery, and physical security. Progent's ISSAP-premier security experts can help your business with all phases of architecture security.
Helpdesk for At Home Workers Troubleshooting
24-Hour Telecommuter Specialists
Progent has 20 years of experience helping small and mid-size companies to plan, deploy, optimize, administer, and troubleshoot computer networks that support at-home workers.
Altaro Microsoft 365 Total Mailbox Backup Integration Support
Hornetsecurity Altaro M365 SharePoint Backup Remote Consulting
Progent is a certified Hornetsecurity/Altaro partner and can design, configure, and manage a deployment of 365 Total Backup to safeguard your Microsoft 365 mailboxes, files stored on your company's OneDrive Accounts and SharePoint Document Libraries, Teams Chats, plus files on Windows-powered laptops and desktops.
Macintosh Computer Consultant
macOS and OS X Professionals
Progent's consultants offer Mac users a variety of services including desktop support, Apple macOS and OS X consulting, Apple Mac integration with Windows networks, Entourage and Exchange Server expertise, network protection services, and custom training. Progent can assist clients to migrate to macOS from Mac OS X or other earlier editions of Apple Mac OS X and Progent can provide help with Apple macOS and Mac OS X applications. Progent's specialists in Apple technology can also help your business with iPhone integration and Apple iPad management, or moving to Apple's iCloud. For computer networks built exclusively on Mac OS X or for systems incorporating a combination of Mac, Linux and Windows based servers and desktops, Progent's Apple, Cisco, and Microsoft consultants have the background and depth to handle the complexity of planning, integrating and maintaining a network environment that is available, secure, efficient and able to achieve your organization's objectives.
System Center 2016 Professional
SCSM 2016 Remote Support
Small to mid-sized companies can now get all the benefits of System Center Operations Manager and in addition have quick access to Progent's Microsoft Premier network support experts. With Progent's affordably priced IT service programs, small organizations can choose a basic Microsoft System Center Operations Manager 2007-based co-sourcing service program with network monitoring, reporting, Help Desk and remote service or a comprehensive round-the-clock outsourcing solution. Progent supports Operations Manager to provide small company networks enterprise-class availability, protection, and performance.
Support and Help ProSight Reporting Network Infrastructure Monitoring
ProSight Reporting ConnectWise Manage Ticketing On-site Support
ProSight Reporting is a growing family of in-depth reporting tools designed to work with the industry's leading ticketing and remote network monitoring programs including ConnectWise Manage, ConnectWise Automate, Customer Thermometer, Auvik, and SentinelOne.
Microsoft Teams Web Apps Server Consult
Microsoft Teams online training Specialist
Progent can assist your business to design an upgrade to Microsoft Teams from Skype for Business Online and install, manage, and troubleshoot a cloud-based or mixed implementation of Microsoft Teams. Progent can help you to connect Teams with Office/Microsoft 365 apps, Exchange, SharePoint Online, and your phone system.
Select Topic: