Repairing the effects of a hack on the central server
30
January, 2025
A company in the shipping industry was the victim of an attack on a Windows server which resulted in the loss of all data.
CUSTOMER PROBLEM

A company in the shipping industry fell victim to an attack on a Windows server, resulting in the loss of all its data. In addition, the intruder left behind a completely infected environment.
The reason? Guessing the relatively weak password of a user who had administrator rights

OUR SOLUTION

We took the decision to completely clean up the IT environment and then – install a completely new system on it. This step was dictated by 2 reasons.

  • Firstly – the burglar made changes that were irreversible and difficult to determine.
  • Secondly – there was no relevant (from the client’s point of view) data on the server.

The entire environment was reinstalled and then configured from scratch. In this way, the company was able to continue its operations – after a relatively short break.

To reduce the risk of similar problems occurring in the future – we implemented a security policy. As part of this, employees were instructed to use strong passwords and, in addition, were made aware of the consequences of non-compliance.

During the course of the work, it became apparent that the customer’s backup software licence was out of date and did not allow for reinstallation. We decided to purchase a new licence, which allowed us to restore the records from earlier in the week.

DO YOU WANT MORE?

See other case studies

Contact

Do you need help?

Let's have a chat