Has anyone had any experience with the Black kingdom ransomware?

✨ Samsung | AliExpress | Wise | Sharesies | GoodSync | Free white papers

Welcome Guest.

You haven't logged in yet. If you don't have an account you can register now.

Forums › Microsoft Windows › Has anyone had any experience with the Black kingdom ransomware?

Hatch

797 posts

Ultimate Geek

#283952 22-Mar-2021 11:08

Send private message

My work has had its server compromised and data files encrypted with a request for $000’s.

The IT team is in the process of restoring from a backup.

This is a filtered page: currently showing replies marked as answers. Click here to see full discussion.

networkn

Networkn
32351 posts

Uber Geek

ID Verified

Trusted

Lifetime subscriber

#2678474 22-Mar-2021 14:25

Send private message

Restoring the system will NOT automatically protect you, even with a patch. It's somewhat likely they may have been in your system for weeks, which means backups for weeks are compromised.

I'd be looking to restore you from Mid Jan, and then restore data only for that. You also need to assume every single password in your organization has been compromised and they may have footholds in places you don't think are likely.

If you do not get this done properly, they will almost certainly get another go, which is going to be misery on top of misery.

@hatch I don't know about your IT team, but I think they should be consulting with experienced external support to ensure you don't end up dealing with this again in a couple of weeks.

You also need to understand, it's more than a little likely, your data has been exfiltrated and they may use that to further blackmail you, or to target your customers suppliers and contacts.

Depending on the size of your operation, the safest option would be a new clean server setup with a new domain and restore only data.

News and reviews »

Air New Zealand Starts AI adoption with OpenAI
Posted 24-Jul-2025 16:00

eero Pro 7 Review
Posted 23-Jul-2025 12:07

BeeStation Plus Review
Posted 21-Jul-2025 14:21

eero Unveils New Wi-Fi 7 Products in New Zealand
Posted 21-Jul-2025 00:01

WiZ Introduces HDMI Sync Box and other Light Devices
Posted 20-Jul-2025 17:32

RedShield Enhances DDoS and Bot Attack Protection
Posted 20-Jul-2025 17:26

Seagate Ships 30TB Drives
Posted 17-Jul-2025 11:24

Oclean AirPump A10 Water Flosser Review
Posted 13-Jul-2025 11:05

Samsung Galaxy Z Fold7: Raising the Bar for Smartphones
Posted 10-Jul-2025 02:01

Samsung Galaxy Z Flip7 Brings New Edge-To-Edge FlexWindow
Posted 10-Jul-2025 02:01

Epson Launches New AM-C550Z WorkForce Enterprise printer
Posted 9-Jul-2025 18:22

Samsung Releases Smart Monitor M9
Posted 9-Jul-2025 17:46

Nearly Half of Older Kiwis Still Write their Passwords on Paper
Posted 9-Jul-2025 08:42

D-Link 4G+ Cat6 Wi-Fi 6 DWR-933M Mobile Hotspot Review
Posted 1-Jul-2025 11:34

Oppo A5 Series Launches With New Levels of Durability
Posted 30-Jun-2025 10:15

Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

RSS feeds: Main feed; Forums feed
Copyright: ©2002-2025 Geekzone®

Site features: Geekzone BI dashboard; Geekzone Badges; Geekzone Status Page

Affiliate links: Samsung; AliExpress; Wise; Sharesies; GoodSync

Site Information: Subscribe to Geekzone; Privacy Statement; Forum Usage Guidelines (FUG); Advertising; Trademark and copyright