How to Recover from a Ransomware Attack

How to Recover From a Ransomware Attack

I have a friend whose business suffered a ransomware attack. 

Instead of rewarding the crooks with a big pay day, he told them to shove it. 

No ransom paid. No long-term damage done. 

How did he recover from a ransomware attack, bruised but not bloodied? 

I’ll tell you how. 

(Pay attention if you prefer not to avoid business-crushing ransom payments.)

You Should Strengthen Defenses, But Don’t Assume You’re Fully Protected

We help businesses fortify their defenses against attacks. That will reduce your risk. But no defense is foolproof. 

The crooks work tirelessly to find and exploit vulnerabilities. So stronger defense is just your first step. 

You Have to Plan for the Worst

Assume disaster may strike and have a clear plan in place to recover. Do you have a Disaster Recovery Plan that spells-out what you will do if the ransomware attack breaks through your defenses? If not, prepare to pay the ransom. 

My friend had a plan. It included daily system backups. The backups were stored outside of the network. 

The plan included detailed step-by-step instructions to restore everything if the system went down. 

So when the crooks came calling and asked for the big bucks, my friend was ready to act. 

They fired up new servers and restored the network without missing a beat. 

They wiped all employees’ computers (bye bye viruses) and restored each machine. 

They conducted thorough malware scans to make sure the crooks were not lurking in the restored network. 

This was not easy. It took time. It cost my friend some money. But he spent far fewer hours and dollars executing his disaster recovery plan than he would have paid in ransom. 

And he felt pretty good to tell those crooks to kiss off. 

Every Business Needs a Disaster Recovery Plan

Most business owners I meet want to focus all their energy on preventing attacks. Of course, that’s important. 

But you have to assume the ransomware will breach your defenses. You have to focus on how to recover from a ransomware attack. 

You have to establish a disaster recovery plan that you periodically review and update. 

By the way, you need that plan not just because of the cyber-crooks. IT disasters happen all the time for all sorts of reasons. 

You can’t turn on the news these days without reading about floods, fires, power outages, and other disasters that can bring a network to its knees. 

If you have a plan, you can recover and push on. Without a plan, you’re sunk. 



If you’d like to discover how proactive technology planning can help your business, schedule a complimentary consultation with us.