[westondeboer]

One of my clients was hit with a ransomware attack on their website.

It was a WordPress website, and I got an email that the website was down. I visited the website and saw the ransom, something something pay us in bitcoin.

I had been using their backup services for a long time, so it took me three minutes to create a new server and import the data and the site was down for no longer than 10 minutes.

I changed the users passwords and had virtually forgotten about it for a few weeks. When I was reminded about it a few weeks later, when a user asked why the password was changed.

Does it cost too much to do backups?

[nucleardog]

Hugely interconnected IT systems are a little more complicated to restore from backup than a wordpress site. Especially since you need to disconnect everything, restore and ensure _nothing_ has been missed, then reconnect everything otherwise any remaining infected devices could just lead to it all happening again. This is all more complicated when those systems are driving actual real world mechanisms and business processes.

As far as I know they have backups and are working on restoring from them.

Keeping spare parts (backups) is good. But there's a difference between pulling your bicycle in the garage and replacing the inner tube and trying to rebuild your car from scratch while you're doing 60mph down the freeway.