At IT Live, we let our clients speak for us. Our dedicated IT engineers are happier getting on with getting it done rather than talking about how experienced, skilled, and qualified they are.
Despite their humility, the team at IT Live often find themselves in situations that are business critical for our clients and when that happens they stop at nothing to ensure the safety and security of our clients are maintained. When everything is running as it should, you don’t even know we’re there, but when you have an IT crisis, we’re there – no matter what time of day or night!
AltusNZ and the Crypto Virus
When longtime client, AltusNZ, was attacked by a major virus, the IT Live team were instantly on hand at just after 5am to ensure AltusNZ was in the first instance protected and then back in business as soon as possible.
Read More Below:
As Altus’ trusted IT&C consultants for over ten years, IT Live works with Altus as an IT support business partner offering strategic advice, server support and maintenance across the organisation’s IT infrastructure.
Deon Gresse, Infrastructure manager, Altus said, “At 5:05am on Tuesday, 28 October 2020, I received an outage alert preventing access to our system. With immediate suspicion we contacted IT Live who within 15 minutes determined that Altus was attacked by a major ransomware crypto virus which encrypted the company’s data, causing total outage. Our immediate priority was to protect our employees, the business and get the company fully operational and back online.”
Industry expert, Dawid Sadie, Director, IT Live knew the extent of the virus and led the IT Live team to act fast and disable all user accounts within 30 minutes. This included admin, hosts, internet and sites across the network which eliminated the spread and mitigated further damage the suspicious attack had already instigated.
Dawid said, “Crypto attacks encrypt files on an infected machine, making them completely unrecoverable. To obtain the key which the attacker demands ransom in return, the compromised computer will attempt to transfer the virus to other machines and repeat this process. The most critical step is to immediately disable servers and isolate the network, before further analysis is initiated.”
Core to Altus’ business was protecting the Hyper-V environment. Out of 160 servers, 40 percent required recovery. IT Live’s strategy was to isolate each host and apply a security baseline, deploy antivirus software, and introduce Altus to industry leading backup and recovery solution, Hitachi Vantara.
All hands-on deck, Dawid and the IT Live team formed a steering committee in conjunction with Altus’ CIO, Mark Corboy and IT Manager, Deon Gresse. The teams worked cohesively from the IT Live office to strategize and manage the situation effectively and efficiently. Following protocol and with the ability to live stream to the storage server, IT Live created new domain administrator accounts, with updated passwords and identities. Altus admins was back online within 2 hours, while IT Live continued to systematically run various AV and Malware scanners to ensure servers were cleaned and replaced anti-virus systems.
Once identity servers were functioning, the restore and recovery process began. With Veeam software installed in Altus’s Disaster Recovery (DR) solution from IT Live’s prior engagement, IT Live could easily integrate and stream Hitachi Vantara backup and recovery solution to the hypervisors, recovering the server in minutes.
Dicker Data – the region’s leading distributor of hardware, software, cloud and emerging technologies worked with IT Live to design the best solution. Together they tailored and collaboratively designed Hitachi’s HCP for cloud scale and Veeam Scale-Out Backup Repository.
Typically, a 6 to 12-month process, IT Live resolved Altus’ outage in two days, with minimal impact to users and business operation. Hitachi Vantara and Veeam backup and recovery solution is scalable, offers long-term data retention of virtual, physical and cloud-based workloads and is cost-effective. The solution was the catalyst to achieving fast and reliable backup, restoring business critical applications and replication for Altus workloads. Dawid said, “In our +/- 160 server environment crypto, the previously implemented Veeam and Hitachi solution strengthened and fast-tracked the recovery due to our ability to stream production servers directly from Veeam back to the production Hitachi storage. Every machine is now successfully recovered and backed up protecting Altus against subsequent crypto events.”
Today, ransomware remains one of the biggest threats to data globally with backup data a primary target for attacks. As the IT Live and Altus engagement continues, Hitachi Vantara and Veeam solutions remain active running test plans, audits, selected configurations, test methodologies, and processes to prevent, detect and mitigate cyber threats and ransomware attacks.
Deon Gresse, Infrastructure manager, Altus said, “What stood out the most was speed of recovery, minimal business and employee downtime, and IT Live’s ability to provide reassurance and complete transparency. We are on an ongoing security journey.”
Deon Gresse, Infrastructure manager, Altus, said, “IT Live is a true partner, with their finger on the pulse constantly adding value and finding new solutions to improve our security and IT infrastructure. We’re able to operate business as usual comfortably, knowing the IT Live team have our needs sorted.”
Benefits delivered by IT Live
- Efficiently determined the crypto attack, scale and scope of the infection
- Rapid isolation of the infection preventing the virus from spreading across the organisation’s network
- Guided resolution by forming an IT Live and Altus committee to enable rapid response and recovery
- IT Live minimised downtime getting Altus online and operational within two days
- Evaluated and recovered encrypted systems
- Integrated Hitachi Vantara backup and recovery solution with Veeam software enabling IT Live to address the crypto attack, in the shortest possible time
- Typically, a 6 to 12-month process, IT Live resolved Altus’ outage in 2 days, with minimal impact to users and business operation
- Reported the attack for investigation to The International Criminal Police Organisation (INTERPOL)
Mobile Device Management – as mobile devices become more prevalent, it has become necessary to manage and control these devices to ensure that company data is protected. IT Live has a MDM solution that allows full control of mobile devices, but allows the user the freedom to use their own device (BYOD), without feeling that the device has been locked down by the enterprise.
Be truly mobile – the ever changing business landscape need users to be truly mobile and to be able to work securely from anywhere. IT Live has combined the best products together in a cost effective solution to allow users to be mobile, utilising only one device. The solution also extends to tablet devices allowing you to take your desktop with you, even if the internet is unavailable.
Secure communications across the web – IT Live has put together a solution that allows companies, with branches across New Zealand, to be able to connect securely to each other, without the need for an expensive Wide Area Network (WAN). The solution makes use of ADSL and VDSL internet connections to securely connect all the branches together.