4/17/2023 0 Comments Average corporate crypto lockerThey have a remote server that has the key and there is no easy way to recover any documents. The private key is not stored on your hard drive. If they had had a good backup I would have recommended a rebuild right away. They got the decryption key and their files were restored. There was a second method of payment but I don't remember which one. The only chance they had was to pay the ransom which was $300 it was paid in Bitcoin (untraceable). They helpfully give you the URL to re-download it. Removing the virus is easy enough but then your left with a windows background politely telling you that if you want to get your files back you have to re-download the virus and follow the instructions. The scary thing was that it looked like it got infected while doing legitimate surfing related to his business. This thing encrypted not only the local drive of the PC that was infected but all mapped drives as well (which included their file server and the external drive they were using for backups). Very nasty and unfortunately the business which got this had no good backups, their entire business was at risk. I had an experience with this one last week.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |