Case Study

SCHOOL DISTRICT (RANSOMWARE) 

ISSUE: Network Attacked During Holiday Break, All Systems Compromised, No Backups

SOLUTION: UncommonX MDR/XDR Identifies Where an Attack Started, 24/7 SOC Rebuilds the Network.

The Challenge:

• A school district on leave during the holidays suffered a network attack.
• All systems were compromised, leaving the district without a network.
• No backups were available, and there was no insight into where the attack started.

The Solution:

• UncommonX was called in to remediate the situation.
• UncommonX technology was quickly deployed, and our array of tools allowed visibility into where the attack started, minimizing the amount of time necessary to start the remediation.
• Working together with the school district’s IT team, the security and technology experts on our SOC team were quickly able to start rebuilding the network.
• Monthly cadence calls enable discussions on best practices, tool tuning and testing of processes and procedures that offer IT leadership the confidence in knowing that their team is always prepared for bad actors.

The Results:

• With just 10 days until the students and teachers were due to arrive back on campus, our 24/7 SOC and the district’s IT team worked to successfully rebuild the network and put protections in place.
• This rapid response was possible using UncommonX discovery technology that allowed our SOC visibility into the network traffic.

Takeaways:

• Creating a safe and secure IT and networked environment is critical for avoiding system attacks and ransomware threats.
• With UncommonX 24x7 SOC monitoring all aspects of the environment, and able to protect them from further threats and attacks, the district’s IT team now has the peace of mind knowing future attacks can be avoided.
• The school quickly became a managed service client and has been breach-free since their incident.

Learn more about MDR for Education