|
07-13-2016, 02:19 PM | #1 |
Banned
327
Rep 1,739
Posts |
PSA: Backup Your Data!
Our firm was just hit with the RSA4096 crypto virus (ransomware). It encrypted about half of our client data before being detected, but luckily we had a backup from just a few hours prior. Don't let those basement babies get the best of you!
|
07-13-2016, 08:50 PM | #2 |
Brigadier General
5506
Rep 3,310
Posts |
If any corporation doesn't have backup plan, they deserve to go under. Any company worth anything would have set backup procedure which involves incremental and full backups along with snap shots if the corporation is big enough to have a SAN. Also, storing backups off site should be a major consideration in any backup plan. But all the above is dictated by what the company determines a their RPO (recovery point objective) and RTO (recovery time objective). Closer you want both RTO and RPO to be with real time the more you're going to pay to execute it.
|
Appreciate
1
jaye9441020.00 |
07-14-2016, 08:38 AM | #4 | |
Banned
327
Rep 1,739
Posts |
Quote:
http://www.kaspersky.com/about/news/...rs-in-One-Year |
|
Appreciate
0
|
07-14-2016, 08:43 AM | #5 | |
Banned
327
Rep 1,739
Posts |
Quote:
Edit: they were also the only machines running Windows 10 Last edited by Sidewinderpb; 07-14-2016 at 08:56 AM.. |
|
Appreciate
0
|
07-14-2016, 09:00 AM | #6 |
Major
548
Rep 1,131
Posts |
What "virus" protection was on your firms computers?
|
Appreciate
0
|
07-14-2016, 12:32 PM | #9 |
Enlisted Member
33
Rep 43
Posts |
Hey Norwalk! Used to live on Matilda Ave
Anyways, Symantec.... are you using the latest 12.1.6.RU6 MP5 build released like 2 weeks ago? There is a 0-day flaw that affects basically all of the products because of the scan engine needs to be updated (not the virus definations). https://www.neowin.net/news/symantec...zero-day-flaws I'm upgrading all of our clients within the next few weeks to help prevent these kind of issues... about 25,000 workstations and 2500 servers. ............. We had a similar issue however and this was a smaller remote site that still used tape backups so they were able to restore from about 8hrs overnight (lost some very little data but still could have been worse). Other larger sites use storage snapshots so that is a bit faster and is not affected by the OS. So easy to mount a previous snapshot and boot up and off we go. Just delete the encrypted VM HDDs and off we go. |
Appreciate
0
|
07-14-2016, 02:47 PM | #10 | |
Banned
327
Rep 1,739
Posts |
Quote:
Funny you should mention that. As I was reading your post, I received an email stating that servers would be going down tonight to update Symantec. Good call! |
|
Appreciate
0
|
11-12-2016, 10:04 PM | #11 |
Enlisted Member
7
Rep 47
Posts |
AOMEI Backupper is the simplest FREE backup software with system/disk/partition/file backups and system/disk clone. http://www.backup-utility.com
|
Appreciate
0
|
11-13-2016, 12:15 AM | #12 |
Enlisted Member
8
Rep 43
Posts Drives: 328i xdrive Join Date: Apr 2016
Location: New England
|
Ransomware is a scary virus. A friend of mine lives in Maine and he told me about how his local police station got hit with the virus, they had no choice but to pay. FBI tracked the bitcoins to a Swiss bank but it was a dead end after that.
|
Appreciate
0
|
Post Reply |
Bookmarks |
|
|