Ransomware Audits

The implications of a ransomware attack are enormous. While the temptation to engage with the criminal to quickly get back working might be significant – it is our experience that this will frequently not result in a positive outcome.

A lock down of the system (to prevent further attack) and a comprehensive audit of all areas of the network, cloud data and back-up or disaster recovery systems, should be performed as soon as possible to fully understand the extent of the attack. This leads to more informed decisions as to how to proceed. Recovery, continuity and compliance are all effected and need to be managed.

As part of this process, BITS will audit the security systems in place, in an effort to narrow down the potential avenues of attack. This helps to understand how it may have occurred in the first place and to protect the “spread” of the attack outside your organisation.