eDiscovery Leader's Recovery from Ransomware Attack

This case study details the recovery process of an eDiscovery leader following a ransomware attack on their Microsoft Azure environment. The company, which provides advanced eDiscovery and forensic services, faced significant challenges after migrating workloads to Azure. With over 1500 resources affected, including virtual machines and storage accounts, the organization sought to ensure resilience against potential cyber threats. The Commvault Cloud Rewind platform was utilized to restore operations swiftly. The recovery process involved identifying a healthy point-in-time copy of the environment, allowing the IT team to restore 18 subscriptions and associated resources in under 36 minutes. The document outlines the importance of maintaining visibility and resilience in cloud environments, especially under the threat of encryption attacks. Additionally, it highlights the compliance requirements the company must adhere to, including Sarbanes-Oxley (SoX) mandates in the USA and Japan. This case study serves as a testament to the effectiveness of the Commvault solution in mitigating cyber risks.