In the second week of September, Colorado Timber – a printing business located in Denver – had to put a halt to its operations for an indefinite period of time. The website’s communication channels used English and Spanish for announcing 12TH September as the day when they got hacked. Subsequently, the company’s ransomware removal analysts found out the cyberattack to be relating to a ransomware.
The actual machinations and the infection of the ransomware go back to mid-August. The ransomware was able to corrupt the business’ DB server and found a gold mine in the form of all the stored business data As a result; it encrypted all the data in the server and locked the files.
The cybercriminal group further troubled the business by coming with a unique demand for ransomware removal. In addition to a ransom demand, a physical access to the company’s IT systems was asked for the ransomware removal. The management was compliant with the payment of the ransom demand but they were not in favor of giving any physical access of valuable user data to the cybercriminals.
Following the strange demands of the hackers, the company has been worried about their true objectives. As a result, the physical address of the company’s IT infrastructure has been shut down and security has been deployed to prevent any breach.
For the restoration and ransomware removal processes, the company has been performing operations through tools for the extraction of the data from the corrupted server. The company’s next step is to resume its ERP system so they can take further orders from their clientele.
Interestingly, the company’s battles with the cybercriminal groups are not a rare occurrence. Earlier, cyberattacks had been directed at the company’s which brought down their website and telephone lines.