Sales: 0845 470 4001 | Support: 0845 230 6001 | Contact Form | NPS

Restoring critical data in three days following a cyberattack

Restoring critical data in three days following a cyberattack

The Challenge

In Q3 of 2024, the CEO of a UK-based bank received an email from a ransomware group, informing him that the bank's data had been encrypted and would be released on the dark web unless a ransom demand was paid. Although several insurers and consultants were engaged to resolve the situation, the slow response times made it clear that an alternative approach would be needed.

Finally, in order to minimise the resulting downtime and resume operations as soon as possible, without giving in to the criminals' ransom demand, the organisation engaged Exponential-e to restore and secure their critical servers. With even the shortest period of downtime resulting in serious financial and reputational damage, a team of incident response specialists immediately began the restoration process, aiming to have the bank's systems back online in days rather than weeks.

The Solution

The restoration process began with a thorough audit of the IT ecosystem to establish which servers had been impacted, after which the affected VMs were powered down. A new, fully isolated VDC was created to store these VMs once they were recovered, along with a completely new firewall zone.

With the affected servers restored into this new VDC zone, firewalls were established to allow for the most basic access, after which malware scans were conducted. These scans continued for two days, during which the customer was granted initial access to the servers via a temporary SSL VPN with Azure MFA, allowing them to resume operations in just three days.

At this point, Zerto replication was set up for the new VMs, while Exponential-e simultaneously engaged with the third party that was conducting a forensic investigation. 

Connectivity was soon re-established for the customer's other offices, at which point users were brought back online. Firewall logs were provided for the forensic team, along with initial access to VM images via vCloud Director.

Finally, a test rebuild of the affected VMs was conducted and finalised within two days, and additional firewall policies established.

Exponential-e has repeated variations of this process for multiple other organisations affected by ransomware attacks, allowing them to resume operations as quickly as possible and ensure their critical infrastructure is secured against future attacks. 

The Result

Ongoing communication between all parties involved ,including a dedicated team of incident response specialists at Exponential-e with a defined action plan ensured a seamless restoration process. Day-to-day operations resumed in just seven days, without paying the criminals' ransom demand.

Don't wait for a crisis to expose the cracks, fortify your defences today. Discover how expert response turned seven days of chaos into operational recovery.

Streamlined management, unparalleled protection: How SASE is ushering in the third generation of network security

blog-header-streamlined-management-unparalleled-protection

The security of enterprise networks is a critical priority for all organisations across the public and private sectors, as they are forced to contend with an increasingly turbulent cyber threat landscape. As a result, network teams increasingly find their roles overlap with their organisations' cyber security strategies, with numerous siloed elements now converging.

The Four Pillars of Modern Networking

the-four-pillars-of-modern-networking

Whatever sector you operate in and whatever your long-term business goals, your network is the foundation of your future success. With the distributed workforce now firmly established and customer interactions taking place over an evolving range of channels, business is now truly interconnected, with seamless, secure dataflows its lifeblood.

Everything you need to know about Microsoft’s recently announced pricing updates

everything-you-need-to-know-about-microsofts-recently-announced-pricing-updates
As part of an ongoing effort to offer greater consistency and transparency across their full range of solutions, Microsoft have recently announced several pricing updates.

Futureproofing Retail: Why tomorrow’s shopping experiences must all be built on the right digital foundation

blog-header-futureproofing-retail
Whether it's in person or online, the way we shop has changed forever. Seamless flows of customer data are powering truly personalised, interconnected shopping experiences, with retailers willing to embrace the change positioning themselves ahead of the competition and developing world-class, instantly recognisable brands.

Wherever you are in your network transformation journey, is it time to consider SASE?

Is-it-time-to-conside-SASE_BlogHeader
From start-ups to global leaders, across the public and private sectors, organisations' ongoing growth and brand reputation rises or falls based on the quality of their networks. As a result, network transformation is a growing priority, with IT leaders looking to replace cumbersome legacy systems with flexible, scalable, and secure connections that support tomorrow's highly dynamic workflows.

Leveraging pioneering SASE technology with Gartner’s 2024 Magic Quadrant™ Leader, Cato Networks

leveraging-pioneering-sase-technology-with-gartners-2024-magic-quadrant-leader-cato-networks

Secure Access Service Edge (SASE) is rapidly establishing itself as the solution of choice for the next generation of enterprise networks, where optimal control, visibility, and scalability are essential. In the first quarter of 2024 alone, the SASE market experienced a 23% surge, as more and more organisations began taking advantage of its capabilities.

What does the ICO’s new fining guidance mean for your organisation?

What-does-the-ICOs-new-fining-guidance-mean-for-your-organisation

On the 18th March 2024, the Information Commissioner's Office issued its updated guidance around the issuing of fines when organisations have been found liable for the integrity of their customers' or end users' data being compromised. It is already well-established now that failure to ensure critical data remains secure will result in costly fines, as we have seen repeatedly in multiple high-profile cases over the years.

Preparing for the 2027 PSTN switch-off

preparing-for-the-2025-pstn-switchoff

Now more than ever, organisations across the public and private sectors depend on seamless, secure, and high-quality communications. Even with an increasing range of channels having established themselves in recent years - including voice, email, video, and SMS - voice services remain a key part of how we communicate and collaborate.

The pub of the future: the data-driven transformation of a great British institution

The pub of the future: the data-driven transformation of a great British institution

Like many fixtures of our lives, Britain's pubs were heavily impacted by COVID-19, with their familiar patrons unable to come in for a post-work drink, or meet with friends at the weekend. But while it was undoubtedly a difficult period for the industry as a whole, this great British institution did as it has always done, and adapted to suit its patrons' evolving requirements.

AI in the Contact Centre: People, Bots, and the New Customer Experience

AI-in-the-Contact-Centre-People-Bots-and-the-New-Customer-Experience

In the space of just a few short years, Artificial Intelligence (AI) has gone from being a somewhat niche field, to front and centre in the public consciousness. With the rise of ChatGPT and similar platforms, there is much speculation about where this technology is heading, and what its impact will be on our personal and professional lives. Indeed, organisations across numerous sectors are already exploring the different ways it can be utilised to reduce costs, optimise efficiency, and improve service quality.

Data-driven manufacturing - laying the foundation for tomorrow’s interconnected workflows

blog-header-datadriven-manufacturin_20230615-143318_1

Manufacturing workflows are evolving at an unprecedented rate, and the trend shows no signs of slowing down. The increasing effectiveness and affordability of 'smart' technologies and the Internet of Things means IT and OT are increasingly interconnected, with increasing volumes of data flowing between sites and devices on an ongoing basis.

It is a challenging time for the Manufacturing sector, but focusing on operational efficiency can still provide the leading edge

blog-header-it-is-a-challenging-time-for-the-manufacturing-sector-but-focusing-on-operational-efficiency-can-still-provide-the-leading-edge

The past few years have been challenging for the global Manufacturing sector, with both Brexit and COVID-19 creating a wide range of operational disruptions whose impact is still being felt. Indeed, as recently as January 2023, we saw UK manufacturing shrinking for the sixth consecutive month1.

Developing a new breed of security to suit the new ways in which we consume content

Developing-a-new-breed-of-security-to-suit-the-new-ways-in-which-we-consume-content
The way in which we consume content has changed forever. Physical media and prescheduled TV and radio have rapidly given way to the convenience, accessibility, and range offered by streaming services. Independent content creators share the digital stage with the most well-established industry leaders, and numerous organisations have embraced the mantra that 'content is king', utilising online video as a key tool for building engagement with their prospects and customers.

HMPPS’ Telemedicine programme and the power of technology as a force for social change

HMPPS-Telemedicine-programme-and-the-power-of-technology-as-a-force-for-social-change
The public sector's relationship with technology is evolving at an unprecedented rate, as familiar legacy systems are increasingly phased out in favour of leading-edge digital infrastructure that offers levels of scalability, sustainability, and operational resilience that would previously have been dismissed as impossible.

Understanding the Five Time Thieves and Retaking Control of Your Most Precious Resource

blog-header-Understanding-the-Five-Time-Thieves_

We're all trying to do more with less, whether that's making our monthly shop go further and reducing our utilities consumption at home or doing more with our organisations' available budgets and resources in our professional lives. But while getting the most out of the resources we have available is certainly admirable and sensible, our most precious resource – one that we cannot replenish once it's been used – is all-too-frequently neglected: our time.

The true meaning of digital transformation (it’s more than just reorganisation and technology)

blog-header-the-true-meaning-of-digital-transformation

After several years of serious global upheaval, it is clear that resilience, agility, and the ability to adapt to the unexpected are critical priorities for all organisations – regardless of size or sector. However, this accelerated pace of change has, in many cases, revealed the limitations of existing IT services. With an increasing emphasis on on-demand services and a highly fluid workforce, legacy services and their systems often struggle to support new propositions and customers' evolving needs, which will – in turn – make maintaining a competitive advantage difficult, if not near impossible.

A new model for technology partnerships in the Hospitality & Leisure sector

A-new-model-for-technology-partnerships-in-the-Hospitality--Leisure-sector
The Hospitality & Leisure sector is inherently people-focused, with the personal touch making all the difference to guests' experiences. But, as we have already discussed on this blog, the multiple lockdowns in response to COVID-19 have forced to the entire sector to adopt new ways of engaging with guests, utilising next-gen smart technology to deliver truly bespoke experiences and streamlined access to a wide range of services.

The 12-18-3 method - opening the door to accelerated innovation and continuous learning

The-12-18-3-method---opening-the-door-to-accelerated-innovation-and-continuous-learning

The digital landscape is evolving at a rate that's never been seen before and is set to continue accelerating in the years ahead. In such a fast-paced environment, the ability to work flexibly, responding to unexpected challenges and optimising the time-to-market for new innovations, is critically important for all organisations - whether they're ambitious start-ups or established global leaders. While IT infrastructure must certainly support this - hence the widespread phasing out of legacy infrastructure in favour of increasingly sophisticated Cloud transformation strategies - any new technology will be of limited effectiveness if processes and methodologies do not evolve in parallel.

The Finance sector’s relationship with its Cloud providers is evolving

The-Finance-sectors-relationship-with-its-Cloud-providers-is-evolving

For some years now, Cloud adoption has been steadily on the rise across the UK's Finance sector, with organisations including banks, insurers, and investment firms phasing out increasingly cumbersome legacy systems in favour of more scalable, agile, and cost-effective infrastructure. Indeed, more than 48% of UK banking services are now built on Cloud infrastructure.