LTI Global

Ransomware Clean-up


A healthcare partner sought our PS department's help for a customer affected by Sodinokib ransomware, resulting in encrypted files and business interruption. LTI assisted in validating
the imaging solution's virus-free status before GE Healthcare could assist in the customer's recovery.


LTI quickly provided a T&M SoW to deploy a file scanning app that checks accessible files in the customer's tech stack. If malicious files are found, we use Content Disarm and Reconstruction (CDR) to sanitize them.


LTI validated several terabytes of compliance data, identified and removed several thousand malicious files before detonation, and provided a formal report to the customer. LTI also provided upgraded perimeter and EDR solutions, and offered retainer services for post-incident response.