Ransomware.
Ransomware.
Hey everyone, here’s a quick update from one of my clients on March 5th at 9 AM. They reached out saying their accounting software couldn’t be accessed. Using TeamViewer, I connected remotely. All files were protected with .java extensions—specifically Dharma Ransomware. I shared the email address in the new file name and sent them a message. After some time, they replied requesting 1.5 BTC to decrypt the files.
They told me to restore from backups. This became tricky because they only contacted us when there was a problem with their PC. The last time we visited was about six months ago. Back then, a colleague mentioned that their backups weren’t working due to storage limitations—specifically, trying to back up 700GB to a 500GB drive caused issues. That happened around mid-2016.
We managed to restore their files using FTP backups to our office, which is great. Most of their data was stored in Dropbox. We’re now working on setting up a new system with better drives, but the client remains stubborn and blames us for the problem.
Today (March 31st at noon), I learned all their important files were encrypted on that PC. Files with .SUSPENDED extensions are locked down. The encryption used a unique RSA-1024 private key generated just for this machine. To unlock them, you’ll need the private key plus the decryption software.
If you want to try decrypting, send us a small encrypted file (1-3 MB max) and we’ll send it back in its original form for free. Decryption costs $600 if you contact us within 72 hours.
My personal ID: --REMOVED FOR SECURITY--
Email to reach out: [email protected]
Reminder: If you don’t hear back within 12 hours, call me at [email protected]
This situation is really unfavorable for the client, isn't it? It's definitely the ransomware issue. You can also show proof of it.
It might have been resolved with the 3-2-1 approach. Had more awareness of recovery expenses for damaged drives or ransomware incidents.
JRock, get ready to drop some amazing tracks! I've been eagerly anticipating your arrival at the trailer park.
I've experienced this situation multiple times: hiring staff or partnering with another firm often leads people to believe it's a smart move, only to disregard their advice later. Eventually, the consequences appear, whether they realize it or not. It seems they've finally recognized the issue—though they still struggle to see how they contributed to the problem. Clearly, the only reason they stayed clients for three decades was that no major issues had arisen yet. It feels like a turning point where they learn who their true allies are. You cautioned them, you helped twice, even after they ignored backup plans. Now all you can do is move forward and find someone better suited.