❓ Help Advice po ransomeware

[capetag]

Na ransom server namin

 

[emman-zamora]

put Eset Anti Virus on there

 

[gf0rce02]

yaring mahirap yan. kaya ugaling mag backup khit makaluma style. mahirap mag recover. o magrestore niya .

 

[Xersei]

wala na magagawa ts, yung method naman nila na 'need mo magbayad' is most probably a scam. what you can do is backup everything na hindi pa naapektuhan then move on. always turn on your antivirus—windows defender/security is enough kase may feature siya na pang-block ng ransomware and of course, katulong mo yung guts mo sa pag-prevent ng unfortunate event katulad niyan, think before clicking something or running something.

 

[ceejaybassist]

How did it happen, though? Did anyone tinker with the server and click anything suspicious?

 

[capetag]

How did it happen, though? Did anyone tinker with the server and click anything suspicious?

Open port po RDP kasi for development pa yung system namin. Plan to close pagkatapus yung system.

 

[ceejaybassist]

Open port po RDP kasi for development pa yung system namin. Plan to close pagkatapus yung system.

why did you expose it? you can just use VPN like tailscale or wireguard to connect to it...
anyway, wala na rin yan...if you have backup of the files, good, but if not, back to zero talaga kayo.
is this in the cloud?

 

[gf0rce02]

bumili ka ng firewall ilagay mo sa network mo lahat naman ng firewall my policy. e close mo lahat nga port ng netwok mo at limit mo rin mga download at web. at kung wla ka p firewall gawa ka muna script para sa disable at enbale ng network adapter niya kung hdi naman requirement open ang server mo 24 hour sa gabi naman wla gumagamit na server niyo yan muna gawin mo tpos script mo ginawa ilagay mo sa tash scheduler ikaw bahala ano oras mo pwd disable network adapater mo at ano oras siya pwd enable ulit. kpag nagawa mo yan for sure wla na mkakaaccess niya server mo.

 

[capetag]

why did you expose it? you can just use VPN like tailscale or wireguard to connect to it...
anyway, wala na rin yan...if you have backup of the files, good, but if not, back to zero talaga kayo.
is this in the cloud?

Pero parang nasira nadin yung system namin . Pwedi kaya ma restore yung OS or reinstall windows server 2022

 

[PHC-ILULU]

check mo if may key. pag wala reformat na talaga yan

 

[AustinMerrimack]

hard areset mo nalang via ang drive c para safe na rin ugali ing mag update nang anti virus sa built in ni windows......