Help, we are Hacked!
Don't panic, our specialists will assist you
A hack, virus or cryptolocker in your organisation? Every second counts, but stay calm. Count on our experts to prevent worse.
-
Suspicious activity in your network or PC?
Disconnect internet line asap to prevent data theft & spread. Switch off PCs where possible. Servers are best kept switched on. -
Affected by Ransomware/cryptolocker?
Possibly a decryption tool already exists! Check here
Investigate whether your backups are also affected(!)
Attention - for organisations only, NOT(!) for individuals
Not a customer yet?
Call 0468 175 371
24/7... No worries, we understand the situation is precarious and communicate clearly about our approach, rates and whether or not we can/can help.
How will VanRoey help in the event of a hack, cryptolocker or virus?
Defusing
Our specialists will thoroughly search the affected areas and fix the problems as soon as possible to prevent worse
Research
We investigate via log files how the hack could have happened. We also search the Dark Web to see if your data is not being offered anywhere
Prevention
We can help you maximise the security of your environment to prevent new hacks.
Be careful!Some tips
To avoid additional data breaches or damage, some caution is in order. Keep the following things in mind:
A hacker anticipates you panicking and wanting to change passwords quickly, but he may have access to your mailbox. He can thus abuse password-reset links.
A common technique is to set up a rule that immediately forwards incoming mails to his address. That way, you won't get to see the password-reset mails yourself, but he will just use them to appropriate access to these accounts.
So first check that there are no new/suspicious rules set on your mailbox.
Also keep in mind: it is not because e.g. your PC or network has been hacked that a hacker immediately gets into your banking app or accounting environment. These are often completely separate platforms.
Multi-step authentication is a good way to keep accounts safe, even if your password is known. But hackers are ingenious and also try to steal the tokens. So don't sign up anywhere until you can be sure that no hacker is watching, can intercept tokens or has the ability to present you with fake login pages.
Hope you got good (off-site) backups provided, which are 'immutable', and thus protected against e.g. a cryptolocker. The last thing you want is:
- That your backups are also encrypted
- Or that the cryptolocker is hidden (or 'latent') along with it, leaving you affected again in a few days, weeks or even months.
So check thoroughly that your backups are clean.
Don't restore your backup too quickly either, the log files are very valuable for figuring out afterwards which data were accessed. You don't want to lose them
You obviously want to check your most important/most sensitive documents. But you never know if the hacker, his monitoring software and/or keyloggers are watching. Screenshots are quickly taken!
So only open sensitive databases, platforms or documents when you are sure the system is secure again.
In Belgium, a Duty to report a data breach (GDPR).
- If you identify personal data breaches, you should at the latest within 72 hours report to the Data protection authority (GBA)
- Duty to report to customers/relations: especially if (sensitive) data has been leaked you should inform them as soon as possible. The hacker might already be able to misuse it. Think forged invoices, phishing, extortion...
- Communicate clearly (in human language) & honestly about what happened and what the possible risks are.
- Try to get ahead of as many questions as possible (to get ahead of a red-hot phone).
- Tell what steps you are taking
- If necessary, also think about PR/press communication, or a post on your website for.
