[aksss]

My vote is something's being held for ransom like DNS or account access rather than traditional storage encryption. It's pretty impressive if storage encryption crossed so many network boundaries and affected so many diverse resource types - phones, chat, email, website, distributed app platform. What other central resource besides DNS would have such a broad impact?

[5h]

Or their network isolation is very poor, super common in older tech companies.

[alexfoo]

Or they're hugely Windows based (Exchange, SQL Server, AD Servers, etc) and the same exploit got into a huge number of diverse machines.

Or shudder far reaching writeable network mounts.

[francisofascii]

Yes, exactly. My friend's company was Windows based with mapped drives to external servers.