Do you know that 80% Ransomware have been decrypted ?
Save yourselves from spreading the virus further into other computers. Unplug the network cables from all computers or switch off the WiFi immediately. Obviously this will raise alerts on monitoring that the devices are offline from the next 5 mins. All your services to your customers will be offline until you find the BCP.
Disregard from restarting or shutdown.
Do not restart or shutdown any system even if is not infected. but do disconnect from network.
Inform to your local authorities.
IN India – CERT-IN
US USA – Internet Crime Complaint Centre IC3
UK United Kingdom – Action Fraud
ES Spain – Policía Nacional
FR France – Ministère de l’Intérieur
DE Germany – Polizei
IT Italy – Polizia di Stato
NL The Netherlands – Politie
PL Poland – Policja
PT Portugal – Polícia Judiciária
Escalate to your Security Vendors like : Anti-Virus, EDR, XDR, SoC, VAPT consultant.
Upload a ransom note and/or sample encrypted file to identify the ransomware that has encrypted your data.
Know your variant also from alternative websites like:
In case you are not lucky get help from Anti-Virus vendor / local Security Consultants.
Once you know the variant, you can consider to down load the decryptor and run the decryptor on a copy of encrypted files. You may note that the encrypted files are not harmful if you copy them over to other computer. Do not copy on to any critical system though.
Well, todays RAAS Ransomware as a service is making almost impossible to decrypt the files. If you are not lucky, try to investigate through forensic methods. Eventually it means that you need
an expert to crack through.
If you are not able to know the variant or you are not able to handle Ransomware spread ? Get an expert. Many cyber security services only charge minimum if they don’t restore. It, also adds second pair of eyes to help you.
Written by: Arun R M
Tagged as: ransomware.
© 2021 @ Cynor Sense
|cookielawinfo-checkbox-analytics||11 months||This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".|
|cookielawinfo-checkbox-functional||11 months||The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".|
|cookielawinfo-checkbox-necessary||11 months||This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".|
|cookielawinfo-checkbox-others||11 months||This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.|
|cookielawinfo-checkbox-performance||11 months||This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".|