A leading drug manufacturing company located in the US faced a ransomware threat. Cyber attackers encrypted their files and were asking for ransom to decrypt them. The company refused to pay the ransom or accept any solution from them.
The company had an interconnected system network. This made the severity of the threat even more because other systems in the network also had a high chance of being infected by the ransomware.
The drug manufacturing company approached Nuvento for an action plan in 3-4 days to retrieve the encrypted files in their system. They wanted us to resolve the issue and ensure that such incidents did not reoccur.
Nuvento’s challenge was to identify and remove the ransomware from their network. We deployed our Threat Hunting team, Vulnerability Assessment team, Cybersecurity team, and IT Infrastructure Support team to investigate the situation and identify a viable solution.
Nuvento came up with a disaster recovery plan and analyzed 400 systems, including 40 servers. The company network was analyzed to identify if there were more threats.
We cleansed the entire network, removed the ransomware, and safeguarded their data from further cybersecurity breaches. Following were the measures taken:
We noticed that some systems had outdated antivirus software, while some other systems had no antivirus protection at all. Installing standard antivirus software in all the systems was the first line of defense against the cyber-attack. So, we secured every single system with standard antivirus software.
We installed a threat detection software Infocyte for threat hunting. While running Infocyte, we identified certain suspicious logs. Our team alerted the company of the malware-infected systems, quarantined them, cleaned, and connected them back to their network.
Using Tenable, a leading vulnerability management solution, we ran Vulnerability Assessments. The detected vulnerabilities included unsupported systems, open ports, outdated software, plugins, and web browsers.
Modernize IT infrastructure and scheduled maintenance
IT Support Process Transformation with SLA to ensure business continuity by establishing processes and systems including DR, Ticket Management Systems and Asset Management Systems
Share your requirement with us and our team will contact you within one business day to schedule a personalized consultation.
Once you connect with our technology leaders, they will evaluate your specific business case and share a proof of concept with estimates of costs, the effort required in terms of technologies and developers, and the timeline for the process.