Confident Recovery

When Ransomware Hit, CyberSense® Helped a European Utility Company Recover Fast and with Zero Data Loss

A utility company, frequently targeted by cyberattacks, implemented Dell’s PowerProtect Cyber Recovery vault with CyberSense® from Index Engines™ to enhance its cyber resiliency. This
strategic move proved invaluable during a recent ransomware attack.

Upon install, CyberSense found undetonated ransomware leftover from a previous attack. But just weeks later, going into the coldest and most demanding month of the year, the utility company found its data gone, systems offline, and itself at the mercy of a multimillion-dollar ransomware demand.

Fortunately, they had invested in a robust cyber-resiliency strategy. With the assistance of Dell Technologies’ professional services, they leveraged the air-gapped, immutable data in the Cyber Recovery Vault and CyberSense’s intelligence to restore their data within days, with no data loss.

How they Minimized the Impact of a Ransomware Attack:

It’s When, Not If
Being a frequent target for ransomware, this utility company knew another attack was imminent and invested in their infrastructure and recovery.

Immediate Response
Upon discovering the breadth of their attack, a widespread event spanning 75 TBs of data, the company engaged Dell services immediately.

AI-Powered Intelligence
CyberSense pinpointed the corrupted files, provided critical forensic insights on the attack itself, and identified the most recent clean data backup for complete restoration.

Swift Recovery
By using clean recovery points identified by Cybersense the company returned to normal production in less than a week – 72% faster than they were able to recover prior to CyberSense.

Data Integrity
No data lost throughout the recovery process – which is unprecedented. Even when paying ransoms, 92% of organizations1 are unable to get all of their encrypted data back.

Cyber Resilience

Why Minimizing the Impact is Critical

  • Swift Recovery: The organization returned to normal production within a week. This is far shorter than the recovery time for previous attacks, which had taken months to fully recover.
  • Data Integrity: Experiencing no loss of data during the recovery process maintained the integrity and availability of critical information.
  • Operational Resilience: This attack proved the organization’s ability to withstand and recover from cyberattacks, no ransom required.
  • Regulatory Compliance: Supports compliance standards such as DORA and NIST and helps meet regulatory requirements for data protection and incident response.

Why CyberSense
CyberSense is an AI/ML-powered cyber resilience indexing solution ensuring data integrity to enable a fast, confident recovery, minimizing the impact of a ransomware attack. CyberSense is the only technology that offers a 99.99% SLA for accurate detection of ransomware corruption, backed by its patented research lab which detonates and trains against the latest live ransomware variants.

Conclusion
The implementation of CyberSense has proven to be a critical asset for the utility company, enabling them to recover swiftly and securely from cyberattacks. This successful recovery demonstrates the essential value of implementing a comprehensive cyber recovery solution before attacks occur.

“I pushed and got CyberSense in and it worked as it as I was told, everything was perfect. The whole process was clean, pain free. I know I’ve got process. And it’s proven.”
– IT Director

Back to Main
bottom
CyberSense Video