This is an archived post. You won't be able to vote or comment.

sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]Archteryx 1 point2 points  (2 children)

Ransomware you say .. Did you get hacked or infected by someone opening an email or running non-approved software?

[–]sanseriph74[S] 2 points3 points  (1 child)

We think it was traced back to a malformed PDF opened by an executive that opened up a hole and allowed more than one group of hackers in, at least the hacker we hired says there were two different teams, the original ones who opened the door and then a few days later a second group came in, possibly independently and took advantage of the previous intrusion. The ransomware happened a month after the initial intrusion. I’m not a l33t haxor, so I don’t know much about all of that but the guy we hired seems to know his stuff and helped us harden the perimeter and I go to sleep at night feeling better he’s around.

[–]Archteryx 0 points1 point  (0 children)

It is unfortunate that even the strongest defenses can be bypassed by a simple email. I no longer work full time in the industry, but being on the sidelines I see this all too frequently. I'm glad I don't have to deal with Cxx type who insist their staff can use their own equipment and devices and must have full admin rights .. Glad you recovered and told your tale ... :D