Ransomware : Your Feared IT Nightmare
Ransomware Recovery ProfessionalsRansomware has become a modern cyberplague that represents an existential threat for businesses of all sizes unprepared for an attack. Versions of crypto-ransomware like the Reveton, WannaCry, Bad Rabbit, SamSam and MongoLock cryptoworms have been around for a long time and continue to inflict destruction. Modern variants of ransomware like Ryuk, Maze, Sodinokibi, Netwalker, LockBit and Egregor, plus frequent unnamed malware, not only encrypt online data but also infect most configured system backup. Data synched to the cloud can also be encrypted. In a poorly designed data protection solution, this can render automated restore operations useless and basically knocks the entire system back to square one.

Restoring services and information following a crypto-ransomware intrusion becomes a race against time as the victim tries its best to contain the damage, clear the crypto-ransomware, and restore business-critical operations. Since crypto-ransomware needs time to replicate throughout a network, penetrations are often sprung at night, when successful penetrations may take more time to identify. This compounds the difficulty of promptly marshalling and coordinating a knowledgeable response team.

Progent has a variety of support services for securing Miami organizations from ransomware events. Among these are team training to become familiar with and avoid phishing scams, ProSight Active Security Monitoring for endpoint detection and response utilizing SentinelOne's behavior-based cyberthreat protection to identify and extinguish day-zero malware attacks. Progent in addition offers the assistance of seasoned ransomware recovery consultants with the skills and perseverance to rebuild a breached system as quickly as possible.

Progent's Ransomware Recovery Support Services
Following a crypto-ransomware penetration, sending the ransom demands in cryptocurrency does not guarantee that cyber hackers will respond with the needed keys to decrypt any or all of your data. Kaspersky ascertained that seventeen percent of crypto-ransomware victims never recovered their information after having sent off the ransom, resulting in more losses. The risk is also very costly. Ryuk ransoms are typically a few hundred thousand dollars. For larger enterprises, the ransom demand can be in the millions. The alternative is to re-install the key components of your Information Technology environment. Absent the availability of essential information backups, this requires a broad complement of skills, top notch project management, and the willingness to work continuously until the task is finished.

For two decades, Progent has offered professional Information Technology services for businesses throughout the U.S. and has achieved Microsoft's Partnership certification in the Datacenter and Cloud Productivity competencies. Progent's pool of subject matter experts (SMEs) includes professionals who have been awarded high-level certifications in foundation technologies including Microsoft, Cisco, VMware, and popular distributions of Linux. Progent's security engineers have earned internationally-recognized industry certifications including CISA, CISSP, ISACA CRISC, SANS GIAC, and CMMC 2.0. (Visit Progent's certifications). Progent also has expertise with financial systems and ERP application software. This breadth of expertise affords Progent the skills to knowledgably identify critical systems and integrate the remaining components of your IT system after a crypto-ransomware event and configure them into a functioning system.

Progent's ransomware team deploys powerful project management tools to orchestrate the complex recovery process. Progent appreciates the importance of working swiftly and together with a customer's management and Information Technology team members to prioritize tasks and to put key systems back on line as fast as humanly possible.

Client Story: A Successful Ransomware Virus Response
A client contacted Progent after their network was penetrated by the Ryuk ransomware virus. Ryuk is thought to have been launched by North Korean government sponsored criminal gangs, possibly using strategies exposed from the U.S. NSA organization. Ryuk seeks specific companies with little tolerance for operational disruption and is among the most lucrative iterations of crypto-ransomware. Major targets include Data Resolution, a California-based data warehousing and cloud computing company, and the Chicago Tribune. Progent's client is a small manufacturing business located in Chicago and has around 500 workers. The Ryuk intrusion had shut down all company operations and manufacturing processes. Most of the client's information backups had been on-line at the beginning of the attack and were encrypted. The client was taking steps for paying the ransom demand (more than $200,000) and hoping for the best, but ultimately reached out to Progent.

"I cannot thank you enough about the help Progent gave us throughout the most fearful period of (our) businesses survival. We may have had to pay the cyber criminals if not for the confidence the Progent experts provided us. That you were able to get our messaging and essential applications back faster than one week was amazing. Each person I interacted with or messaged at Progent was totally committed on getting our system up and was working breakneck pace to bail us out."

Progent worked hand in hand the customer to quickly determine and assign priority to the most important systems that needed to be restored in order to resume business operations:

  • Microsoft Active Directory
  • Microsoft Exchange
  • MRP System
To begin, Progent adhered to AV/Malware Processes incident response best practices by halting the spread and disinfecting systems. Progent then initiated the work of recovering Windows Active Directory, the heart of enterprise systems built upon Microsoft technology. Microsoft Exchange email will not function without AD, and the businesses' accounting and MRP software leveraged Microsoft SQL Server, which needs Windows AD for security authorization to the databases.

In less than two days, Progent was able to re-build Active Directory services to its pre-attack state. Progent then performed setup and storage recovery of needed systems. All Microsoft Exchange Server schema and configuration information were usable, which accelerated the rebuild of Exchange. Progent was also able to collect non-encrypted OST files (Outlook Offline Data Files) on user PCs in order to recover mail information. A recent off-line backup of the client's financials/ERP systems made them able to restore these vital applications back on-line. Although major work was left to recover completely from the Ryuk event, critical systems were returned to operations quickly:

"For the most part, the manufacturing operation survived unscathed and we made all customer shipments."

Over the next month key milestones in the recovery process were achieved through close collaboration between Progent consultants and the customer:

  • Internal web sites were brought back up with no loss of data.
  • The MailStore Exchange Server containing more than 4 million historical emails was spun up and accessible to users.
  • CRM/Customer Orders/Invoices/Accounts Payable/Accounts Receivables (AR)/Inventory Control functions were completely restored.
  • A new Palo Alto Networks 850 firewall was brought on-line.
  • 90% of the desktop computers were operational.
"So much of what happened those first few days is mostly a haze for me, but my team will not soon forget the commitment each of the team put in to help get our business back. I've trusted Progent for at least 10 years, possibly more, and every time I needed help Progent has come through and delivered as promised. This situation was no exception but maybe more Herculean."

Conclusion
A possible enterprise-killing catastrophe was evaded due to results-oriented professionals, a wide array of IT skills, and tight teamwork. Although in post mortem the ransomware virus penetration described here would have been identified and blocked with up-to-date security solutions and ISO/IEC 27001 best practices, user training, and properly executed incident response procedures for information protection and keeping systems up to date with security patches, the fact remains that government-sponsored cyber criminals from China, North Korea and elsewhere are relentless and are not going away. If you do fall victim to a ransomware incursion, remember that Progent's team of professionals has substantial experience in crypto-ransomware virus defense, remediation, and file restoration.

"So, to Darrin, Matt, Aaron, Dan, Claude, Jesse, Tony and Chris (along with others that were helping), I'm grateful for letting me get some sleep after we made it over the initial fire. All of you did an impressive effort, and if anyone is around the Chicago area, dinner is the least I can do!"

Download the Crypto-Ransomware Cleanup Case Study Datasheet
To review or download a PDF version of this customer story, click:
Progent's Ransomware Incident Recovery Case Study Datasheet. (PDF - 282 KB)

Contact Progent for Ransomware Cleanup Consulting Services in Miami
For ransomware system recovery consulting services in the Miami area, phone Progent at 800-462-8800 or go to Contact Progent.



An index of content::

  • 24 Hour On-site Support SBS Premium Add-on Microsoft SBS Server Consulting Services
  • 24x7 Consulting Skype for Business certificate management Microsoft Certified Professional Skype for Business Front End Pool

    • Microsoft Teams with Outlook Specialist
    Consultancy Microsoft Teams

    File summary_Microsoft-Teams-Consulting-Experts.asp does not exist



  • Amazon Web Services hybrid cloud integration Programming Companies Amazon SQS Programming
  • Apple Mac Consultant Apple Macintosh On-site Support
  • BlackBerry Synchronization Small Business IT Outsourcing Miami-Dade County, United States BlackBerry Software Experts South Beach
  • Cisco Small Business Network Consultant MIA Network Consulting Group Cisco South Beach, United States
  • Cisco and Microsoft MySQL RDBMS Developer Cisco and Microsoft MySQL migration Professional
  • Consult Maze ransomware hot line ransomware rebuild Consultants
  • Coral Gables Miami Critical Ransomware Cleanup 24x7 Miami Crypto Removal Help Miami, FL
  • Exchange Computer Outsourcing Consultants Miami 24x7x365 Microsoft Exchange 2010 Software Consulting Firm Miami Florida
  • IT Outsourcing Companies Miami-Coral Gables Consulting Team Miami
  • Immediate Security Security Organization South Beach, America Security Cybersecurity Contractors MIA
  • MCSE Consultant Part-Time Job South Florida Microsoft MCTS Remote Consultant Contract Jobs Coconut Grove
  • MIA SQL Server 2019 Server Installation Biggest Microsoft SQL Server Software Consulting Services South Beach, United States

    • Amazon AWS migration Coder
    Contract Programming Firm Amazon EC2 migration

    Progent offers cost-effective online support to help businesses to integrate Amazon AWS cloud services including Amazon EC2 for virtual machine hosting, Amazon S3 for expandable cloud storage, and Glacier for low-cost archival storage. Progent can help your IT team with every aspect of Amazon AWS migration and troubleshooting including requirements analysis, readiness evaluation, system design and review, pilot testing, configuration, centralized administration, performance tuning, licensing management, disaster recovery mechanisms, and security strategies. Progent can provide advanced expertise with firewall configuration and VPN technology and can help you deploy cloud-centric or hybrid cloud ecosystems that seamlessly integrate Amazon AWS services. Progent offers occasional consulting to help you to resolve technical roadblocks or Progent can deliver project management outsourcing or co-sourcing to help you move to the Amazon AWS cloud on schedule and on budget.

  • 24/7 Miami DopplePaymer Crypto-Ransomware Cleanup Downtown Miami
  • Miami At Home Workers IP Voice Systems Consulting Services Downtown Miami Immediate Miami Remote Workforce IP Voice Technology Consulting and Support Services Miami, FL
  • Miami Consultants for Computer Support Companies South Beach, United States Miami Consultants for IT Support Providers Miami, FL
  • Top Rated Miami Hermes Ransomware Recovery Miami-Dade County, United States
  • Miami Crypto-Ransomware Locky Vulnerability Checkup MIA Top Quality Miami Crypto-Ransomware NotPetya Vulnerability Consultation South Beach, USA

    • QTS Data Center Engineer
    Top QTS Sacramento Data Center Professionals

    The QTS Data Center is located in the earthquake-neutral Natomas neighborhood of Sacramento, CA. If your company is currently utilizing the QTS data center as a colocation site or if your business is planning on migrating your main or disaster recovery equipment to Herakles/QTS, Progent offers a variety of budget-friendly services including data center migration, equipment installation and upgrades, infrastructure improvements, project management, virtual server expertise, remote monitoring, streamlined network administration, application programming, disaster recovery/business continuity planning and testing, data security evaluation, and the use of Progent's Test Lab.

  • Miami Crypto-Ransomware Protection Miami Florida Miami Maze Crypto-Ransomware Data-Recovery
  • Miami Netwalker Crypto-Ransomware Recovery Miami-Dade County Florida Miami Phobos Ransomware Recovery MIA
  • Miami Netwalker Ransomware Forensics Miami MIA Miami NotPetya Crypto-Ransomware Forensics Investigation

    • Professionals Ubiquiti UniFi WLAN
    Consultancy Ubiquiti UniFi XG Security Gateway

    Ubiquiti's UniFi family of Wi-Fi products includes indoor and outdoor Wi-Fi APs, WiFi 6/6E and WiFi 7 APs, security gateways, managed switches, IP phones, and cameras. Progent offers the skills of seasoned Wi-Fi consultants who can help you to assess the value of Ubiquiti's UniFi technology for your environment and assist you to plan, install, manage, and maintain your UniFi solution.

  • Miami Spora Ransomware System-Rebuild Miami Miami Ryuk Crypto-Ransomware Mitigation Consultants MIA
  • Miami Work at Home Employees Endpoint Management Tools Consultants MIA, United States Miami Offsite Workforce Endpoint Management Systems Consulting South Beach

    • Consult Microsoft Exchange Server Upgrade
    Microsoft Exchange 2010 Migration Consultant Services

    Progent's Microsoft-certified consultants can deliver low-cost remote and onsite support to carry out your upgrade to Exchange 2010, produce thorough documentation of your new messaging system, train your IT team and end users to get them up to speed rapidly on Exchange 2010, and offer continuing management consulting and technical support. Progent can also help you migrate from Exchange 2010 to Exchange 2013 or Exchange 2016.

  • Miami-Coral Gables Network Support Technician Miami Consulting Services

    • ProSight Duo MFA Remote Consulting
    Urgent ProSight Duo MFA Support and Help

    Progent's Duo managed services utilize Cisco's Duo technology to defend against stolen passwords by using two-factor authentication (2FA). Duo supports single-tap identity verification with Apple iOS, Google Android, and other out-of-band devices.

  • Miami-Dade County Florida Miami Crypto-Ransomware Negotiation Guidance Miami Crypto-Ransomware Settlement Guidance Miami Florida
  • Miami-Dade County Remote Workers Consulting nearby Miami - Help Desk Call Center Solutions Consulting Miami Work at Home Employees Call Desk Augmentation Assistance Coral Gables

    • 24 Hour Windows Server 2016 Multi-domain clusters Integration
    Microsoft Certified Expert Windows Server 2016 High Availability Remote Troubleshooting

    Progent's certified IT experts can provide Windows Server 2016 migration consulting to assist businesses of any size to plan and carry out an efficient move to Windows Server 2016 and Hyper-V 2016 based on an on-premises, cloud-centric, or hybrid architecture. Progent can assist your company to assess the business benefits of Windows Server 2016 for your enterprise and can help you with any aspect of planning, deploying, managing or debugging your Windows Server 2016 and Hyper-V 2016 ecosystem. Progent can assist your organization to benefit from the many innovative high-availability and security capabilities of Windows Server 2016 and Hyper-V 2016 like Windows Containers for isolating applications, Shielded Virtual Machines to protect against compromised administrators, Credential Guard and Remote Credential Guard, JIT Privileged Access Management, Virtual Machine software load, Storage Replica, plus workgroup and multi-domain failover clusters.

  • Microsoft Exchange 2010 Support and Integration Exchange Server 2007 Remote Support
  • Offsite Workforce Expertise near Miami - Collaboration Solutions Consulting South Beach Offsite Workforce Guidance - Miami - Collaboration Systems Consulting and Support Services South Beach
  • Online Technical Support SMS Upgrade 24/7 Microsoft Certified Expert Systems Management Server Consulting
  • Miami Phobos Ransomware File-Recovery Miami Beach, U.S.A.
  • ProSight ESP Endpoint Protection Consultant ProSight ESP Endpoint Security Support and Integration
  • Progent Management Team Small Business Network Consulting Company Progent Management Computer Systems Consulting

    • Open Now Cisco EWC for Catalyst 9100 AP Professionals
    Catalyst 9115 Access Point On-site Support

    Progent's Cisco Catalyst Wi-Fi 6 Access Point experts offer economical online and on-premises help for Catalyst next-generation Wi-Fi 6 wireless access points (WAPs).

  • Ransomware Rebuild Coconut Grove, America Emergency Ransomware Cryptoworm Recovery Miami-Dade County
  • Remote Work at Home Employees Consulting Services - Miami - Network Security Systems Expertise South Beach Miami Remote Workforce Endpoint Security Solutions Consulting Experts South Florida

    • Mid-sized Company Information Technology Outsourcing Companies
    24 Hour Cisco System Engineers Midsize Company

    Progent offers network support for medium size businesses who have 100 to 250 network users. The mid-size company or work group has typically been an underserved part of the market for network support expertise. The overhead and service access practices of large outside service firms make them too expensive for the ordinary small company or small medium business (SMB), which usually has a modest IT budget with which to maintain an information system whose complexity and capability are often similar to the networks of far larger companies. Progent's service delivery model, which takes full advantage of online service, virtual office infrastructure and 24x7 server monitoring, dramatically reduces the network maintenance costs of a small-medium business while offering the small company with enterprise-level service from professional, world-class experts with background in a broad array of small business network solutions. If your medium size organization or small business is looking for the quality of IT support appropriate for a mid-size organization without paying enterprise costs, contact Progent.

  • Remote Workforce Expertise nearby Miami - Solutions Consultants South Florida Telecommuters Consulting nearby Miami - Solutions Guidance South Beach, United States

    • Outlook autodiscover Computer Consultants
    Network Consultants Hybrid Microsoft 365 integration

    Microsoft 365 Exchange Online allows you to utilize cloud-based virtual machines, mailboxes and other Exchange infrastructure to lower hardware costs and administrative overhead. You can deploy Exchange Online to host all your Exchange mailboxes, or you can run a hybrid solution that incorporates both local as well as cloud-resident mailboxes. Progent's Microsoft-certified consulting experts offer affordable online technical support to help your small businesses to evaluate the benefits of Exchange Online, design a solution that fits your business needs and budget, implement a non-disruptive migration from your existing Exchange organization to one that incorporates Exchange Online, train your management team and users, and deliver as-needed consulting and technical support.

  • SCVMM 2012 XenServer Technical Consultant SCVMM 2012 Backup and Recovery Support and Setup
  • SharePoint Computer Engineer South Florida Miami Beach 24 Hour Troubleshooting SharePoint 2013
  • Small Office Manager 24 Hour Microsoft Expert Small Office Network Security Consultant
  • Small Office Server Support Wyoming Microsoft and Cisco Computer Network Support Firms Oklahoma
  • South Florida Technology Consulting Services Slackware Linux, Sun Solaris, UNIX Network Consultant Suse Linux, Sun Solaris, UNIX South Florida

    • MySQL Clustering Specialist
    After Hours Specialist MySQL Standard Edition

    Progent can provide affordable online access to an Oracle MySQL administrator or application developer and can assist businesses of any size to integrate and manage MySQL in a reliable IT infrastructure that offers high levels of performance, scalability, and protection. Progent also has proven skill assisting businesses migrate databases from an Oracle environment to MySQL.

  • Supplemental Network Support Staffing Services Consulting Support Downtown Miami 24-Hour Miami IT Staffing Temps Services Miami-Dade County Florida
  • Miami Crypto-Ransomware System-Rebuild Miami-Dade County Florida, US
  • Support for IT Service Firms Computer Consultant Technical Consultant IT Services for Service Firms
  • Telecommuters Consultants nearby Miami - Cloud Technology Consulting Services Miami South Florida Remote Workforce Assistance near me in Miami - Cloud Integration Systems Consultants
  • Telecommuters Consulting and Support Services near me in Miami - Infrastructure Expertise Miami Offsite Workforce Infrastructure Consulting Experts Miami

    • ProSight password management system Specialists
    ProSight domain management Technology Professional

    ProSight IT Asset Management is a cloud-based IT documentation management service that makes it easy to create, update, find and protect information about your network infrastructure, processes, business apps, and services. You can quickly locate passwords or serial numbers and be alerted automatically about upcoming expirations of SSL certificates ,domains or warranties. By updating and organizing your IT infrastructure documentation, you can eliminate as much as 50% of time wasted looking for critical information about your IT network. ProSight IT Asset Management includes a centralized repository for holding and sharing all documents related to managing your business network such as recommended procedures and How-To's. ProSight IT Asset Management also offers advanced automation for gathering and associating IT information. Whether you're planning enhancements, performing maintenance, or responding to a crisis, ProSight IT Asset Management delivers the information you require the instant you need it.

  • Urgent Microsoft Dynamics GP (Great Plains) Miami Premier Partner - Migration Support Miami Beach Miami MS Dynamics GP Upgrade Support Services MIA
  • Windows Server 2016 Professional Coconut Grove Small Office Computer Consultant Windows Server 2012 Miami-Dade County Florida, America
  • Work at Home Employees Assistance in Miami - Video Conferencing Systems Assistance Miami-Dade County, USA Miami At Home Workers Voice/Video Conferencing Solutions Assistance Coral Gables
  • Work from Home Employees Consulting Services in Miami - Backup/Restore Solutions Assistance Miami, FL Open Now Remote Workers Miami Consulting Experts - Data Protection Solutions Assistance Miami-Dade County Florida
    •
    © 2002-2025 Progent Corporation. All rights reserved.