Customer was infected with large number of endpoints exhibiting signs of unknown encryption initiated by the Threat Actor, causing critical loss of productivity and business disruption. SpearTip, a well known security consulting company originally based in US, partnered with NETS International to remediate and reinstate from the ransomware attack
NETS Security Consultants, along with SpearTip, our MSSP Partner, helped with immediate actions on-site. A complete digital forensics analysis was performed on entire infrastructure including endpoints to determine initial point of compromise. Historical logs of intrusion events were collected and analyzed, eventually variant was identified as Phobos Ransomware. A series of steps were performed on devices, ports and servers level, resulting in complete recovery and elimination of threat footprint from the environment.
The complete exercise helped gaining customer’s trust on NETS International as a leading security solutions provider in the region. NETS was awarded managed services contract for 24/7 Threat Monitoring and support with strict SLAs, which was later extended for a longer term. End-user satisfaction ratings went up within customer environment and Security posture was elevated due to frequent checkpoints, events logging, monitoring & reporting.
Write Author name bellow
Syed Munir Bakht