It’s becoming common to hear testimonies from companies that have had to close their doors due to ransomware attacks. Certainly, this type of event can create trauma and complications for the smooth running of a company.
Large hacker groups, such as LockBit or BlackCat, have been carrying out attacks all over the world in search of victims who agree to pay the ransom to recover their data.
A materials engineering company was the victim of one of these attacks. Being a small company, the risk of suffering very serious impacts on business operations was very high.
The interesting thing was that, despite the extremely worrying situation, they ruled out the option of paying the ransom and funding future attacks and decided to look for experts in the field of data recovery.
The company then quickly found us through Google and initiated contact with one of our experts.
After an initial call, our team was able to get a clear picture of the situation. It had been two days since HiveLeaks had broken into the systems, infecting a virtual machine in a Hyper-V environment. Around 400 GB of crucial information had been blocked by encryption, leaving this data completely inaccessible.
In this scenario, the good news was that we had already recovered cases similar to this one, so there was a high probability that RansomHunter could help this company. This factor already gave the client a certain amount of confidence.
Of course, we didn’t want to work only with probabilities, but with tangible numbers. So we did well to carry out an advanced diagnosis based on the encrypted data.
For security reasons we accessed the customer’s environment via RDP with administrator credentials and single user.
After this diagnosis, we were no longer talking about probabilities, but concrete results. With the client’s agreement, we were able to move the project on to a new phase, recovery.
It’s true that this stage can generate a certain amount of anxiety about wanting to see the results straight away. This is normal after having to pause a company’s activity almost completely. Every day that passes without the business operating represents a lost revenue opportunity for the client.
Therefore, to contain anxiety, we established control points throughout the project. In this way, there was transparency of processes for both parties.
Despite the certain complexity of the encryption, our experts in decrypting ransomware files worked on this project for 2 days. At the end of the process, we scheduled an appointment with the client so he could validate and test his data.
It’s important to remember that at RansomHunter payment for the service is only made once the customer has validated the data.
The result was that 100% of the encrypted data was recovered and made available to the client to get his company up and running again.
Today, there is the possibility of recovery even after having suffered a ransomware attack. Nothing is lost! Digital Recovery Group, through RansomHunter, has the technology and know-how to bring the solution your company needs.
Contact one of our specialists and recover your data right now.
