🇦🇷 Ransomware attack on one of the largest river logistics companies in Latin America

One of the largest River Logistics companies in Latin America contacted us to decrypt files after an attack by Quantum Ransomware.

There has been a wave of attacks by the Quantum group targeting several different companies. Small, medium and large companies have been targeted. In this case a large river logistics company in Argentina was the victim.

The hackers most likely found a loophole in the system through emails sent to employees. Once the malware was inserted into the environment, the criminals managed to encrypt the data with the Quantum extension. They then stipulated a $100,000 figure for the ransom.

Paying the amount requested by the hackers was not an option. It had been two weeks since the day of the attack.

After trying to recover in a few ways, the company became aware of the situation and decided to look for an outside alternative to the problem. After some time of searching they found us and decided to contact us by phone.

After the first contact with our team, we identify the main points of the project and consequently perform advanced diagnostics.

A number of 15 Hyper-V virtual machines and the entire backup server (Veeam) had been infected, causing the paralysis of all the administrative and operational processes of the company for 2 weeks, mainly in the HR and financial sectors.

The result of the diagnostic performed gave us an optimistic view on the project, there was a possibility of decrypting the files, and our specialists were able to do this. 

With the customer’s authorization, we then began the recovery process. Even with the accepted commercial proposal, the customer seemed suspicious, which can be understood given the large volume of data involved in the project.

To bring confidence to the client, we did what we usually do in our projects, we established a series of checkpoints that were communicated to inform them in real time about each progress of the project. Organizing things in this way eased the client’s fears and concerns.

The recovery went as planned and our team was able to decrypt 100% of the files encrypted by the ransomware. In total, we recovered data from 15 virtual machines and restored the Veeam backup present in the environment.

The client was able to resume its activities quickly after our intervention. Without the support of our experts, one of the largest river logistics companies in Latin America would have its image totally tarnished in the face of the events. Not to mention the repercussions from its own clients due to the loss of confidential data.

Negotiating with hackers is negotiating with criminals. Digital Recovery specializes in decrypting ransomware files, without negotiating with hackers. We helped a large company experience a turnaround, we can help you too.

We are always online

Please fill out the form, or select your preferred contact method. We will contact you to start recovering your files.

Latest insights from our experts

Through unique technologies Digital Recovery can bring back encrypted data on any storage device, offering remote solutions anywhere in the world.

Discover the invisible vulnerabilities in your IT – with the 4D Pentest from Digital Recovery