The losses of the largest IT provider Sopra Steria as a result of the October ransomware attack Ryuk will amount to € 40 million to € 50 million. The company’s specialists made an assessment of the damage caused taking into account the lost profit due to the downtime of services, as well as the cost of work to eliminate the consequences and restore the normal functioning of systems.
Sopra Steria, based in France, does business in 25 countries. It employs 46 thousand full-time employees. The provider specializes in providing a variety of IT services such as consulting, system integration, software development.
According to Sopra Steria, the malware appeared on its networks on the evening of October 20. In a comment for BleepingComputer, a company spokesman confirmed that it was Ryuk, and in a new version. The IT and information security services of the company tracked and stopped the attack in time – a couple of days after the hack; due to this, the ransomware did not have time to spread throughout the entire infrastructure and harm the information systems under its care. At the same time, experts did not find a data leak.
The restoration work, which began on October 26, is almost complete. The company’s employees regained access to workstations, servers, tools and applications, as well as a strong connection with customers.
Ransomware attacks targeting corporate networks are usually costly to victims. Thus, the damage from the spring Maze attack on the largest provider of managed IT services Cognizant was estimated at $ 50- $ 70 million; LockerGoga’s visit to the Norsk Hydro network last year cost the aluminum industry leader nearly $ 40 million.