Our team uses proven FBI negotiation tactics, coupled with more than 10 years of experience helping ransomware victims negotiating with hackers and recovering their data.
Back then, we did not know what we are doing is called ransomware negotiation – we just help organizations get their data back.
Hackers use encryption which cannot be ‘recovered’ without having the decryption key.
They have little experience with negotiators and are often in a hurry to get paid and move on to the next target.
We have seen companies who refuse to negotiate with criminals – but this tactic is ineffective against criminals in a dark alley and just as ineffective with hackers on the other side of the globe.
Ransomware is the monetization choice hackers sometimes make after spending months in a network.
They know a company’s IT well after spending months inside and often take off with your most valuable data before initiating the ransomware stage of their attack.
If they start extorting you with publishing your data, your problems become much larger than the ransom demand amount: government regulatory penalties, reputation damage, loss of clients, etc.
The recovery after a ransomware incident is far from over when you get your data back. Remember, ransomware is just a symptom. The security breach is the real problem – and the fact, that the hackers now know all your sysadmin passwords for all servers and desktops.
Just recovering your data may leave backdoors on your servers and computers and the vulnerabilities used to get in last time will be used again by others or even by the same hackers.
We can help with the recovery and security hardeing process after a breach.