Strategic recovery from a ransomware attack
Strategic recovery from a ransomware attack
A global leader in the redistribution of pricing and reference data for financial institutions fell victim to a ransomware attack by the cybercriminal group Akira. The group rendered the company’s systems inoperable. Critical data stores were potentially corrupted. Akira was threatening to leak the stolen data.
The client brought on Control Risks to support with initial crisis management as well as rebuilding and recovery, forensic investigation, and cyber threat intelligence monitoring. Our experts conducted a thorough forensic investigation to assess the impact on data integrity and the likelihood of data exfiltration, provided reassurance regarding the minimal impact on data integrity, and aided in the recovery and communication efforts.
The crisis response minimised operational downtime, while the prioritisation of forensic investigation led to a swift determination of the low likelihood of data exfiltration, which allowed for precise legal and regulatory guidance. Deep and dark web monitoring informed proactive measures against potential leaks and provided endpoint detection and response, with insights into the cybercriminal's potential moves to navigate the aftermath of the attack.
In collaboration with Control Risks, the client not only navigated the crisis but mitigated further risks and began the process of restoring normal business operations.